CVE-2018-16974

Name of the Vulnerable Software and Affected Versions Elefant CMS versions prior to 2.0.7

Description The issue concerns a PHP Code Execution Vulnerability. It can be exploited by using the /filemanager/api/rm/.htaccess endpoint to remove the .htaccess file, and then using a filename that ends in .php followed by space characters to bypass the blacklist. This vulnerability is present in the apps/filemanager/upload/drop.php file.

Recommendations For Elefant CMS versions prior to 2.0.7, update to version 2.0.7 or later to resolve the issue. As a temporary workaround, consider restricting access to the /filemanager/api/rm/.htaccess endpoint and the apps/filemanager/upload/drop.php file to minimize the risk of exploitation. Avoid using filenames that end in .php followed by space characters in the affected API endpoint until the issue is resolved.