Main Vulnerability Database Vulnerabilities #VU17936

Dangerous file upload in SDCMS - CVE-2019-9651

Published: March 11, 2019

Vulnerability identifier: #VU17936

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Green

CVE-ID: CVE-2019-9651

CWE-ID: CWE-434

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: SDCMS

Affected software:
SDCMS

Detailed vulnerability description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to the application does not perform a case sensitive validation of the file extension before allowing file upload within the check_bad() function in appadmincontroller hemecontroller.php file. A remote authenticated attacker can upload a PHP file to the system that contains system() PHP call and file extension ".PHP".

How to mitigate CVE-2019-9651

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Sources

http://www.iwantacve.cn/index.php/archives/155/

Dangerous file upload in SDCMS - CVE-2019-9651

Detailed vulnerability description

How to mitigate CVE-2019-9651

Sources

Please verify you're human