PT-2014-8745 · Cm · Cm Download Manager

Published

2014-12-05

Updated

2018-10-09

CVE-2014-8877

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions CM Downloads Manager plugin versions prior to 2.0.4

Description The issue allows remote attackers to execute arbitrary PHP code. This is achieved via the CMDsearch parameter to the "cmdownloads/" endpoint, which is processed by the PHP create function function.

Recommendations For versions prior to 2.0.4, update to version 2.0.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the "cmdownloads/" endpoint or disabling the alterSearchQuery function in the CmdownloadController.php file until a patch is available. Avoid using the CMDsearch parameter in the affected endpoint until the issue is resolved.

Exploit

Fix

RCE

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2014-8877

Affected Products

Cm Download Manager

PT-2014-8745 · Cm · Cm Download Manager

CVE-2014-8877

Weakness Enumeration

Related Identifiers

Affected Products

References · 8