Share
## https://sploitus.com/exploit?id=1B7B48F7-5B81-51AC-85C4-47B473FB3324
# CVE-2018-9206 - Blueimp jQuery-File-Upload Lab
Vulnerable Docker environment for CVE-2018-9206 - Unrestricted File Upload in Blueimp jQuery-File-Upload '
# Execute it
curl "http://localhost:8888/jQuery-File-Upload/server/php/files/test.php"
# Output: CVE-2018-9206-PWNED
```
Or run the PoC script:
```bash
./scripts/poc.sh
```
## Cleanup
```bash
docker compose down -v
```
## Details
| Field | Value |
|-------|-------|
| CVE | CVE-2018-9206 |
| Product | Blueimp jQuery-File-Upload |
| Version | 9.22.0 |
| Type | Unrestricted File Upload โ RCE |
| CVSS | 9.8 (Critical) |
## References
- https://nvd.nist.gov/vuln/detail/CVE-2018-9206
- http://www.vapidlabs.com/advisory.php?v=204
- https://www.exploit-db.com/exploits/45790/