CVE-2019-17536

Опубликовано: 13 окт. 2019

Источник: nvd

CVSS3: 9.9

CVSS3: 4.9

CVSS2: 4

EPSS Низкий

Описание

Gila CMS through 1.11.4 allows Unrestricted Upload of a File with a Dangerous Type via the moveAction function in core/controllers/fm.php. The attacker needs to use admin/media_upload and fm/move.

Ссылки

https://github.com/GilaCMS/gila/pull/49
Exploit
Third Party Advisory
https://rastating.github.io/gila-cms-upload-filter-bypass-and-rce/
Exploit
Third Party Advisory
https://github.com/GilaCMS/gila/pull/49
Exploit
Third Party Advisory
https://rastating.github.io/gila-cms-upload-filter-bypass-and-rce/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:gilacms:gila_cms:*:*:*:*:*:*:*:*

Версия до 1.11.4 (включая)

EPSS

Процентиль: 60%

0.00403

Низкий

9.9 Critical

CVSS3

4.9 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-43m6-mm77-vrc8

CVSS3: 4.9

github

больше 3 лет назад

Gila CMS through 1.11.4 allows Unrestricted Upload of a File with a Dangerous Type via the moveAction function in core/controllers/fm.php. The attacker needs to use admin/media_upload and fm/move.

EPSS

Процентиль: 60%

0.00403

Низкий

9.9 Critical

CVSS3

4.9 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-434