exploitDog

CVE-2023-53924

Опубликовано: 17 дек. 2025

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

UliCMS 2023.1-sniffing-vicuna contains a remote code execution vulnerability that allows authenticated attackers to upload PHP files with .phar extension during profile avatar upload. Attackers can trigger code execution by visiting the uploaded file's location, enabling system command execution through maliciously crafted avatar uploads.

Ссылки

https://web.archive.org/web/20230314183734/https://en.ulicms.de/
Product
https://www.exploit-db.com/exploits/51434
Exploit
https://www.vulncheck.com/advisories/ulicms-sniffing-vicuna-remote-code-execution-via-avatar-upload
Third Party Advisory
https://www.exploit-db.com/exploits/51434
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ulicms:ulicms:2023.1:*:*:*:*:*:*:*

EPSS

Процентиль: 53%

0.00305

Низкий

8.8 High

CVSS3

Дефекты

CWE-434

Связанные уязвимости

GHSA-xrjv-cxq7-2pw3

CVSS3: 8.8

github

около 2 месяцев назад

UliCMS 2023.1-sniffing-vicuna contains a remote code execution vulnerability that allows authenticated attackers to upload PHP files with .phar extension during profile avatar upload. Attackers can trigger code execution by visiting the uploaded file's location, enabling system command execution through maliciously crafted avatar uploads.

EPSS

Процентиль: 53%

0.00305

Низкий

8.8 High

CVSS3

Дефекты

CWE-434