PT-2018-14730 · Popojicms · Popojicms

P0Desta

Published

2018-11-05

Updated

2018-12-11

CVE-2018-18934

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions PopojiCMS version 2.0.1

Description An issue was discovered in the software, where the admin component.php is exploitable via the "po-admin/route.php?mod=component&act=addnew" URI by using the fupload parameter to upload a ZIP file containing arbitrary PHP code. This code can be extracted and executed. The issue can also be exploited via CSRF, allowing for potential unauthorized access and code execution.

Recommendations For PopojiCMS version 2.0.1, consider disabling the fupload parameter in the admin component.php to prevent uploading of malicious ZIP files until a patch is available. Restrict access to the "po-admin/route.php?mod=component&act=addnew" URI to minimize the risk of exploitation.

Exploit

Fix

CSRF

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-352CWE-434

Related Identifiers

CVE-2018-18934

Affected Products

Popojicms

PT-2018-14730 · Popojicms · Popojicms

CVE-2018-18934

Weakness Enumeration

Related Identifiers

Affected Products

References · 4