Описание
A remote code execution vulnerability in the installUpdateThemePluginAction function in index.php in WonderCMS 3.1.3, allows remote attackers to upload a custom plugin which can contain arbitrary code and obtain a webshell via the theme/plugin installer.
Ссылки
- ProductThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- https://zetc0de.github.io/post/authenticated-rce-ssrf-wondercms/#authenticated-remote-code-executionExploitThird Party Advisory
- ProductThird Party Advisory
- ExploitThird Party AdvisoryVDB Entry
- ExploitThird Party Advisory
- https://zetc0de.github.io/post/authenticated-rce-ssrf-wondercms/#authenticated-remote-code-executionExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:wondercms:wondercms:3.1.3:*:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.39573
Средний
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-78
Связанные уязвимости
github
больше 3 лет назад
An OS command injection vulnerability in the installUpdateThemePluginAction function in index.php in WonderCMS 3.1.3, allows remote attackers to upload a custom plugin which can contain arbitrary code and obtain a webshell via the theme/plugin installer.
EPSS
Процентиль: 97%
0.39573
Средний
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-78