CVE-2024-30162

Name of the Vulnerable Software and Affected Versions Invision Community versions prior to 4.7.17

Description The issue allows remote code execution via the applications/core/modules/admin/editor/toolbar.php IPScoremodulesadmineditor toolbar::addPlugin() method. This method handles uploaded ZIP files that are extracted into the applications/core/interface/ckeditor/ckeditor/plugins/ directory without properly verifying their content. This can be exploited by admin users to write arbitrary PHP files into that directory, leading to execution of arbitrary PHP code in the context of the web server user.

Recommendations For versions prior to 4.7.17, update to a version that contains a fix for this issue to prevent remote code execution. As a temporary workaround, consider disabling the IPScoremodulesadmineditor toolbar::addPlugin() method until a patch is available. Restrict access to the applications/core/interface/ckeditor/ckeditor/plugins/ directory to minimize the risk of exploitation.