CVE-2019-19634

Опубликовано: 17 дек. 2019

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Средний

Описание

class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension for Joomla! and other products, omits .pht from the set of dangerous file extensions, a similar issue to CVE-2019-19576.

Ссылки

https://github.com/jra89/CVE-2019-19634
Third Party Advisory
https://github.com/verot/class.upload.php/blob/2.0.4/src/class.upload.php#L3068
Exploit
Third Party Advisory
https://medium.com/%40jra8908/cve-2019-19634-arbitrary-file-upload-in-class-upload-php-ccaf9e13875e
https://github.com/jra89/CVE-2019-19634
Third Party Advisory
https://github.com/verot/class.upload.php/blob/2.0.4/src/class.upload.php#L3068
Exploit
Third Party Advisory
https://medium.com/%40jra8908/cve-2019-19634-arbitrary-file-upload-in-class-upload-php-ccaf9e13875e

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:verot_project:verot:*:*:*:*:*:*:*:*

Версия до 1.0.3 (исключая)

cpe:2.3:a:verot_project:verot:*:*:*:*:*:*:*:*

Версия от 2.0.0 (включая) до 2.0.4 (исключая)

Конфигурация 2

cpe:2.3:a:getk2:k2:*:*:*:*:*:joomla\!:*:*

Версия до 2.10.1 (включая)

EPSS

Процентиль: 94%

0.15025

Средний

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-2gc7-w4hw-rr2m