Описание
In GetSimpleCMS 3.3.15, admin/upload.php blocks .html uploads but there are several alternative cases in which HTML can be executed, such as a file with no extension or an unrecognized extension (e.g., the test or test.asdf filename), because of admin/upload-uploadify.php, and validate_safe_file in admin/inc/security_functions.php.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:get-simple:getsimple_cms:3.3.15:*:*:*:*:*:*:*
EPSS
Процентиль: 44%
0.00221
Низкий
3.8 Low
CVSS3
4 Medium
CVSS2
Дефекты
CWE-434
Связанные уязвимости
CVSS3: 3.8
github
больше 3 лет назад
In GetSimpleCMS 3.3.15, admin/upload.php blocks .html uploads but there are several alternative cases in which HTML can be executed, such as a file with no extension or an unrecognized extension (e.g., the test or test.asdf filename), because of admin/upload-uploadify.php, and validate_safe_file in admin/inc/security_functions.php.
EPSS
Процентиль: 44%
0.00221
Низкий
3.8 Low
CVSS3
4 Medium
CVSS2
Дефекты
CWE-434