CVE-2020-36079

Name of the Vulnerable Software and Affected Versions: Zenphoto versions 1.5.7 and earlier

Description: The issue allows for authenticated arbitrary file upload, leading to remote code execution. An attacker must navigate to the uploader plugin, check the elFinder box, and then drag and drop files into the Files(elFinder) portion of the UI, potentially placing a .php file in the server's uploaded/ directory. It's noted that exploitation can only be performed by an admin, who already has significant possibilities to harm the site.

Recommendations: For versions 1.5.7 and earlier, consider disabling the uploader plugin or restricting access to the elFinder functionality until a patch is available. Additionally, restrict the ability to upload files, especially .php files, to the server's uploaded/ directory to minimize the risk of exploitation.