CVE-2019-19988

Name of the Vulnerable Software and Affected Versions Selesta Visual Access Manager (VAM) versions 4.15.0 through 4.29

Description An issue allows a user with valid credentials to create and write XML files on the filesystem via the "/common/vam editXml.php" API endpoint in the web interface. The vulnerable PHP page does not check the file name parameter, the destination path, or the file extension, enabling an attacker to manipulate the file name and create any type of file within the filesystem with arbitrary content.

Recommendations For versions 4.15.0 through 4.29, as a temporary workaround, consider restricting access to the "/common/vam editXml.php" API endpoint to minimize the risk of exploitation. Additionally, restrict the ability to create files with arbitrary extensions and content to prevent potential attacks.