PT-2020-15607 · Joomla · Joomla Component Gmapfp

Published

2020-08-27

Updated

2020-09-09

CVE-2020-23972

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions Joomla Component GMapFP versions J3.5 and J3.5free

Description The issue allows an attacker to access the upload function without authenticating to the application. It also enables the upload of files due to unrestricted file uploads. This can be bypassed by changing the content-type and name file to use double extensions.

Recommendations For Joomla Component GMapFP versions J3.5 and J3.5free, consider restricting access to the upload function to authenticated users only and implement proper validation for uploaded files to prevent bypassing by changing the content-type and name file. As a temporary workaround, consider disabling the upload function until a proper fix is available.

Exploit

Fix

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

CVE-2020-23972

Affected Products

Joomla Component Gmapfp

PT-2020-15607 · Joomla · Joomla Component Gmapfp

CVE-2020-23972

Weakness Enumeration

Related Identifiers

Affected Products

References · 6