CVE-2019-10874

Опубликовано: 05 апр. 2019

Источник: nvd

CVSS3: 8.8

CVSS2: 6.8

EPSS Низкий

Описание

Cross Site Request Forgery (CSRF) in the bolt/upload File Upload feature in Bolt CMS 3.6.6 allows remote attackers to execute arbitrary code by uploading a JavaScript file to include executable extensions in the file/edit/config/config.yml configuration file.

Ссылки

http://packetstormsecurity.com/files/152429/Bolt-CMS-3.6.6-Cross-Site-Request-Forgery-Code-Execution.html
https://fgsec.net/from-csrf-to-rce-bolt-cms/
Exploit
Third Party Advisory
https://github.com/bolt/bolt/pull/7768/commits/91187aef36363a870d60b0a3c1bf8507af34c9e4
Exploit
Patch
Third Party Advisory
https://www.exploit-db.com/exploits/46664/
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/152429/Bolt-CMS-3.6.6-Cross-Site-Request-Forgery-Code-Execution.html
https://fgsec.net/from-csrf-to-rce-bolt-cms/
Exploit
Third Party Advisory
https://github.com/bolt/bolt/pull/7768/commits/91187aef36363a870d60b0a3c1bf8507af34c9e4
Exploit
Patch
Third Party Advisory
https://www.exploit-db.com/exploits/46664/
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:boltcms:bolt:3.6.6:*:*:*:*:*:*:*

EPSS

Процентиль: 61%

0.00407

Низкий

8.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-352

Связанные уязвимости

GHSA-3g6c-88pf-m46f