PT-2017-13442 · Blackcat · Blackcat Cms

Published

2017-09-12

Updated

2017-09-19

CVE-2017-14399

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions BlackCat CMS version 1.2.2

Description The issue allows for unrestricted file upload in the backend/media/ajax rename.php file via the extension parameter. This can be exploited by changing the file extension, for example, from .jpg to .php.

Recommendations For BlackCat CMS version 1.2.2, consider restricting access to the backend/media/ajax rename.php file or validating the extension parameter to prevent malicious file uploads. As a temporary workaround, restrict the use of the extension parameter in the affected API endpoint until a patch is available.

Fix

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2017-14399

Affected Products

Blackcat Cms

PT-2017-13442 · Blackcat · Blackcat Cms

CVE-2017-14399

Weakness Enumeration

Related Identifiers

Affected Products

References · 3