PT-2018-15157 · Apache+1 · Freemarker+1

Buxuo

Published

2018-12-06

Updated

2018-12-26

CVE-2018-19907

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Crafter CMS version 3.0.18

Description A Server-Side Template Injection issue allows attackers with developer privileges to execute OS commands by creating or editing a template file (.ftl filetype) that triggers a call to freemarker.template.utility.Execute in the FreeMarker library during rendering of a web page.

Recommendations For Crafter CMS version 3.0.18, consider restricting access to template file creation and editing to prevent potential exploitation until a patch is available. As a temporary workaround, consider disabling the use of the FreeMarker library or restricting its functionality to minimize the risk of OS command execution.

Exploit

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2018-19907

GHSA-9FCP-VCQ9-9H2H

Affected Products

Crafter Cms

Freemarker

PT-2018-15157 · Apache+1 · Freemarker+1

CVE-2018-19907

Weakness Enumeration

Related Identifiers

Affected Products

References · 8