CVE-2019-7718

Name of the Vulnerable Software and Affected Versions Metinfo versions 6.x

Description An issue was discovered that allows an attacker to execute arbitrary PHP code via a race condition in the backend database backup function. This can be achieved by leveraging the admin/index.php and admin/databack/bakup tables.php endpoints, specifically the n=databack&c=index&a=dogetsql&tables and 2=file put contents parameters. The vulnerability arises from the temporary creation of bakup tables.php by app/system/databack/admin/index.class.php.

Recommendations For Metinfo version 6.x, consider disabling the database backup function temporarily to prevent exploitation until a patch is available. Restrict access to the admin/index.php and admin/databack/bakup tables.php endpoints to minimize the risk of arbitrary PHP code execution. Avoid using the tables parameter in the affected API endpoint until the issue is resolved.