exploitDog

CVE-2019-9181

Опубликовано: 26 фев. 2019

Источник: nvd

CVSS3: 7.2

CVSS2: 6.5

EPSS Низкий

Описание

SchoolCMS version 2.3.1 allows file upload via the logo upload feature at admin.php?m=admin&c=site&a=save by using the .jpg extension, changing the Content-Type to image/php, and placing PHP code after the JPEG data. This ultimately allows execution of arbitrary PHP code.

Ссылки

http://www.iwantacve.cn/index.php/archives/125/
Exploit
Third Party Advisory
http://www.iwantacve.cn/index.php/archives/125/
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:schoolcms:schoolcms:2.3.1:*:*:*:*:*:*:*

EPSS

Процентиль: 76%

0.00943

Низкий

7.2 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-5232-4rfr-54hc

CVSS3: 7.2

github

больше 3 лет назад

SchoolCMS version 2.3.1 allows file upload via the logo upload feature at admin.php?m=admin&c=site&a=save by using the .jpg extension, changing the Content-Type to image/php, and placing PHP code after the JPEG data. This ultimately allows execution of arbitrary PHP code.

EPSS

Процентиль: 76%

0.00943

Низкий

7.2 High

CVSS3

6.5 Medium

CVSS2

Дефекты

CWE-434