Описание
MediaWiki PandocUpload Extension Remote Code Execution Vulnerability
FAQ
How could an attacker exploit this vulnerability?
An authenticated attacker could exploit this vulnerability by uploading a file with the destination name as a malicious payload due to shell arguments not being properly escaped. When successfully exploited this could allow the malicious actor to perform remote code execution.
According to the CVSS metric, the attack vector is network (AV:N), and privilege required is low (PR:L). What is the target used in the context of the remote code execution?
The attacker for this vulnerability could target the server accounts in an arbitrary or remote code execution. As an authenticated user, the attacker could attempt to trigger malicious code in the context of the server's account through a network call.
The privilege requirement is low because the attacker needs to be authenticated as a normal user.
Возможность эксплуатации
Publicly Disclosed
Exploited
Latest Software Release
DOS
EPSS
8.8 High
CVSS3
Связанные уязвимости
MediaWiki PandocUpload Extension Remote Code Execution Vulnerability
MediaWiki PandocUpload Extension Remote Code Execution Vulnerability
Уязвимость расширения гипертекстовой среды MediaWiki PandocUpload, связанная с недостаточной проверкой входных данных, позволяющая нарушителю выполнить произвольный код
EPSS
8.8 High
CVSS3