PT-2022-17501 · Mautic · Mautic
John Linhart
+3
·
Published
2022-03-01
·
Updated
2024-09-20
·
CVE-2022-25769
CVSS v3.1
9.1
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
Mautic versions prior to 3.3.5
Mautic versions prior to 4.2.0
Description
The default .htaccess file has some restrictions in the access to PHP files to only allow specific PHP files to be executed in the root of the application. However, the regex in the second FilesMatch only checks the filename, not the full path, which is incorrect logic. This issue can enable local host attacks due to an improper validation flaw.
Recommendations
For Mautic versions prior to 3.3.5, please upgrade to version 3.3.5 or later.
For Mautic versions prior to 4.2.0, please upgrade to version 4.2.0 or later.
As a temporary workaround, consider restricting access to the .htaccess file until a patch is applied.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mautic