SB2015011604 - Multiple vulnerabilities in AdaptCMS
Published: January 16, 2015 Updated: August 9, 2020
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 3 vulnerabilities.
1) Input validation error (CVE-ID: CVE-2015-1060)
The vulnerability allows a remote non-authenticated attacker to read and manipulate data.
Open redirect vulnerability in lib/Cake/Controller/Controller.php in AdaptCMS 3.0.3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the HTTP Referer header. <a href="http://cwe.mitre.org/data/definitions/601.html">CWE-601: URL Redirection to Untrusted Site ('Open Redirect')</a>
2) Code Injection (CVE-ID: CVE-2015-1059)
The vulnerability allows a remote #AU# to read and manipulate data.
Unrestricted file upload vulnerability in admin/files/add in AdaptCMS 3.0.3 allows remote authenticated users to execute arbitrary PHP code by uploading a file with a PHP extension, then accessing it via a direct request to the file in /app/webroot/uploads.
3) Cross-site scripting (CVE-ID: CVE-2015-1058)
Vulnerability allows a remote attacker to perform Cross-site scripting attacks.
An input validation error exists in AdaptCMS 3.0.3 when processing the (1) data. A remote attacker can trick the victim to follow a specially crafted link and execute arbitrary HTML and script code in victim's browser in security context of vulnerable website.
Successful exploitation of this vulnerability may allow a remote attacker to steal potentially sensitive information, change appearance of the web page, perform phishing and drive-by-download attacks.
Remediation
Cybersecurity Help is not aware of any official remediation provided by the vendor.
References
- http://osvdb.org/show/osvdb/116721
- http://packetstormsecurity.com/files/129813/AdaptCMS-3.0.3-HTTP-Referer-Header-Open-Redirect.html
- http://www.exploit-db.com/exploits/35710
- http://www.zeroscience.mk/en/vulnerabilities/ZSL-2015-5219.php
- https://exchange.xforce.ibmcloud.com/vulnerabilities/99618
- http://osvdb.org/show/osvdb/116722
- http://packetstormsecurity.com/files/129814/AdaptCMS-3.0.3-Remote-Command-Execution.html
- http://zeroscience.mk/en/vulnerabilities/ZSL-2015-5220.php
- https://exchange.xforce.ibmcloud.com/vulnerabilities/99616
- http://osvdb.org/show/osvdb/116716
- http://osvdb.org/show/osvdb/116717
- http://osvdb.org/show/osvdb/116718
- http://osvdb.org/show/osvdb/116719
- http://osvdb.org/show/osvdb/116720
- http://packetstormsecurity.com/files/129812/AdaptCMS-3.0.3-Cross-Site-Scripting.html
- http://www.zeroscience.mk/en/vulnerabilities/ZSL-2015-5218.php
- https://exchange.xforce.ibmcloud.com/vulnerabilities/99617