PT-2017-17806 · Pivotx · Pivotx

Published

2017-04-07

Updated

2017-04-13

CVE-2017-7570

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions PivotX version 2.3.11

Description The issue allows remote authenticated Advanced users to execute arbitrary PHP code. This can be achieved by uploading a file with a safe extension, such as .jpg, and then using the duplicate function to change the file extension to .php.

Recommendations For PivotX version 2.3.11, consider restricting access to the file upload functionality and the duplicate function for Advanced users until a patch is available. As a temporary workaround, avoid using the duplicate function on uploaded files to minimize the risk of exploitation.

Exploit

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2017-7570

Affected Products

Pivotx

PT-2017-17806 · Pivotx · Pivotx

CVE-2017-7570

Weakness Enumeration

Related Identifiers

Affected Products

References · 3