CVE-2018-19520

Name of the Vulnerable Software and Affected Versions SDCMS version 1.6

Description The issue is related to incorrect code generation management in SDCMS, allowing remote attackers to execute arbitrary PHP code. Specifically, the themecontroller.php file in the app/admin/controller directory uses a check bad function to block certain PHP functions, such as eval, but fails to prevent the use of preg replace 'e' calls. This oversight enables users to execute arbitrary code by leveraging access to admin template management.

Recommendations For SDCMS version 1.6, consider disabling the themecontroller.php file or restricting access to admin template management until a patch is available. Additionally, as a temporary workaround, avoid using the preg replace function with the 'e' modifier in the affected themecontroller.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.