CVE-2019-17370

Name of the Vulnerable Software and Affected Versions OTCMS version 3.85

Description The issue allows for arbitrary PHP code execution. This is due to insufficient blocking of certain SQL manipulations in the admin/sysCheckFile deal.php file, specifically not blocking the "into/**/outfile" manipulation in a SELECT statement. This enables an attacker to create a .php file.

Recommendations For OTCMS version 3.85, consider restricting access to the admin/sysCheckFile deal.php file until a proper fix is applied, and ensure that any SQL queries are properly sanitized to prevent such manipulations.