PT-2018-10089 · Projectpier · Projectpier
Imre Rad
·
Publicado
2018-05-16
·
Atualizado
2018-06-19
·
CVE-2018-10760
CVSS v3.1
8.8
Alta
| Vetor | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
ProjectPier versions 0.88 and earlier
Description
The issue allows remote authenticated users to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the file in the tmp directory under the document root.
Recommendations
For versions 0.88 and earlier, consider restricting file uploads to only allowed extensions and ensure proper validation of uploaded files to prevent execution of arbitrary PHP code. As a temporary workaround, restrict access to the tmp directory under the document root to minimize the risk of exploitation.
Correção
Unrestricted File Upload
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Projectpier