PT-2017-18691 · Playsms · Playsms

Darks3Curity

Published

2017-05-19

Updated

2019-03-15

CVE-2017-9080

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions PlaySMS version 1.4

Description The issue allows remote code execution due to the execution of PHP code in the name of an uploaded .php file. This is caused by a combination of Unrestricted File Upload and Code Injection in the sendfromfile.php file.

Recommendations For PlaySMS version 1.4, consider restricting the upload of .php files and validating the file types and contents to prevent code injection. As a temporary workaround, restrict access to the sendfromfile.php file to minimize the risk of exploitation.

Exploit

Fix

RCE

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2017-9080

Affected Products

Playsms

PT-2017-18691 · Playsms · Playsms

CVE-2017-9080

Weakness Enumeration

Related Identifiers

Affected Products

References · 7