SB2023030115 - Multiple vulnerabilities in MuYuCMS
Published: March 1, 2023
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 4 secuirty vulnerabilities.
1) Server-Side Request Forgery (SSRF) (CVE-ID: CVE-2023-1046)
The disclosed vulnerability allows a remote attacker to perform SSRF attacks.
The vulnerability exists due to insufficient validation of user-supplied input in the /admin.php/update/getFile.html script. A remote user can send a specially crafted HTTP request and trick the application to initiate requests to arbitrary systems.
Successful exploitation of this vulnerability may allow a remote attacker gain access to sensitive data, located in the local network or send malicious requests to other servers from the vulnerable system.
2) Path traversal (CVE-ID: CVE-2023-1045)
The vulnerability allows a remote user to perform directory traversal attacks.
The vulnerability exists due to input validation error when processing directory traversal sequences in the /admin.php/accessory/filesdel.html. A remote administrator can send a specially crafted HTTP request and read arbitrary files on the system.
3) Code Injection (CVE-ID: CVE-2023-1044)
The vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to improper input validation in the /editor/index.php script. A remote user can send a specially crafted request and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
4) Path traversal (CVE-ID: CVE-2023-1043)
The vulnerability allows a remote attacker to perform directory traversal attacks.
The vulnerability exists due to input validation error when processing directory traversal sequences. A remote user can send a specially crafted HTTP request and modify arbitrary files on the system.
Remediation
Cybersecurity Help is not aware of any official remediation provided by the vendor.
References
- https://vuldb.com/?ctiid.221805
- https://vuldb.com/?id.221805
- https://github.com/MuYuCMS/MuYuCMS/issues/7
- https://vuldb.com/?id.221804
- https://vuldb.com/?ctiid.221804
- https://github.com/MuYuCMS/MuYuCMS/issues/6
- https://vuldb.com/?ctiid.221803
- https://vuldb.com/?id.221803
- https://github.com/MuYuCMS/MuYuCMS/issues/5
- https://vuldb.com/?ctiid.221802
- https://vuldb.com/?id.221802
- https://github.com/MuYuCMS/MuYuCMS/issues/4