PT-2018-14954 · Getsimple · Getsimple Cms

Hexifeo

Published

2018-11-21

Updated

2018-12-28

CVE-2018-19420

CVSS v2.0

4.0

Medium

Vector

AV:N/AC:L/Au:S/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions GetSimpleCMS version 3.3.15

Description The issue allows HTML execution through alternative file uploads. This can occur with files having no extension or unrecognized extensions, such as 'test' or 'test.asdf', due to vulnerabilities in admin/upload-uploadify.php and the validate safe file function in admin/inc/security functions.php.

Recommendations For GetSimpleCMS version 3.3.15, consider restricting or validating file uploads more strictly to prevent HTML execution, and review the validate safe file function in admin/inc/security functions.php to ensure it correctly handles files with no or unrecognized extensions.

Exploit

Fix

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2018-19420

Affected Products

Getsimple Cms

PT-2018-14954 · Getsimple · Getsimple Cms

CVE-2018-19420

Weakness Enumeration

Related Identifiers

Affected Products

References · 4