CVE-2015-8358

Name of the Vulnerable Software and Affected Versions bitrix.mpbuilder module versions prior to 1.0.12

Description The issue exists due to insufficient restriction of the directory path name in the bitrix.mpbuilder module of the 1С-Битрикс system. Exploitation of this issue may allow a remote attacker to include and execute arbitrary local files by adding ".." symbols to the directory name in the "work" array parameter to the "admin/bitrix.mpbuilder step2.php" endpoint.

Recommendations For versions prior to 1.0.12, update to version 1.0.12 or later to resolve the issue. As a temporary workaround, consider restricting access to the "admin/bitrix.mpbuilder step2.php" endpoint to minimize the risk of exploitation. Avoid using the work array parameter in the affected endpoint until the issue is resolved.