VULHUB ™

Core APM is a web-based project management application written in PHP. It is freely available and will run on most Unix and Linux variants. A feature included in Core APM permits users to upload files to the host. Due to a design flaw, it is possible for remote users to upload files containing interpreted code. Once the file is uploaded it may be possible for the user to call the file, initiating the execution of the malicious file.

Core APM is a web-based project management application written in PHP. It is freely available and will run on most Unix and Linux variants. A feature included in Core APM permits users to upload files to the host. Due to a design flaw, it is possible for remote users to upload files containing interpreted code. Once the file is uploaded it may be possible for the user to call the file, initiating the execution of the malicious file.