PT-2023-29216 · October · October

Whatev3N

Publicado

2023-11-29

Atualizado

2023-12-06

CVE-2023-44381

CVSS v3.1

4.9

Média

Vetor

AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions October versions prior to 3.4.15

Description The issue allows an authenticated backend user with the editor.cms pages, editor.cms layouts, or editor.cms partials permissions to craft a special request and include PHP code in the CMS template, despite cms.safe mode being enabled. This poses a problem for those relying on cms.safe mode to restrict users from writing and executing arbitrary PHP.

Recommendations For versions prior to 3.4.15, update to version 3.4.15 to resolve the issue. As a temporary workaround, consider removing the editor.cms pages, editor.cms layouts, or editor.cms partials permissions from untrusted users to minimize the risk of exploitation.

Exploit

Correção

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-94

Identificadores relacionados

CVE-2023-44381

GHSA-Q22J-5R3G-9HMH

Produtos afetados

October

PT-2023-29216 · October · October

CVE-2023-44381

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 9