CVE-2018-9848

Name of the Vulnerable Software and Affected Versions Gxlcms QY version 1.0.0713

Description The issue allows remote attackers to execute arbitrary PHP code. This is achieved by first changing the config[upload class] value to include 'php' using an Admin-Admin-Configsave request, and then making an Admin-Upload-Upload request. The upload function in LibLibActionAdminUploadAction.class.php is vulnerable to this attack.

Recommendations For Gxlcms QY version 1.0.0713, as a temporary workaround, consider restricting access to the upload function in LibLibActionAdminUploadAction.class.php to minimize the risk of exploitation. Avoid using the config[upload class] variable to include executable file types in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.