PT-2018-10089 · Projectpier · Projectpier

Imre Rad

Published

2018-05-16

Updated

2018-06-19

CVE-2018-10760

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ProjectPier versions 0.88 and earlier

Description The issue allows remote authenticated users to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the file in the tmp directory under the document root.

Recommendations For versions 0.88 and earlier, consider restricting file uploads to only allowed extensions and ensure proper validation of uploaded files to prevent execution of arbitrary PHP code. As a temporary workaround, restrict access to the tmp directory under the document root to minimize the risk of exploitation.

Fix

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2018-10760

Affected Products

Projectpier

PT-2018-10089 · Projectpier · Projectpier

CVE-2018-10760

Weakness Enumeration

Related Identifiers

Affected Products

References · 3