CVE-2019-16113

Опубликовано: 08 сент. 2019

Источник: nvd

CVSS3: 8.8

CVSS2: 6.5

EPSS Высокий

Описание

Bludit 3.9.2 allows remote code execution via bl-kernel/ajax/upload-images.php because PHP code can be entered with a .jpg file name, and then this PHP code can write other PHP code to a ../ pathname.

Ссылки

http://packetstormsecurity.com/files/155295/Bludit-Directory-Traversal-Image-File-Upload.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/157988/Bludit-3.9.12-Directory-Traversal.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/158569/Bludit-3.9.2-Directory-Traversal.html
Exploit
Third Party Advisory
VDB Entry
https://github.com/bludit/bludit/issues/1081
Exploit
Third Party Advisory
http://packetstormsecurity.com/files/155295/Bludit-Directory-Traversal-Image-File-Upload.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/157988/Bludit-3.9.12-Directory-Traversal.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/158569/Bludit-3.9.2-Directory-Traversal.html
Exploit
Third Party Advisory
VDB Entry
https://github.com/bludit/bludit/issues/1081
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:bludit:bludit:3.9.2:*:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.89747

Высокий

8.8 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-ch69-hjrw-4hf3