Main Vulnerability Database Vulnerabilities #VU17936

#VU17936 Dangerous file upload in SDCMS - CVE-2019-9651

Published: March 11, 2019

Vulnerability identifier: #VU17936

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Green

CVE-ID: CVE-2019-9651

CWE-ID: CWE-434

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
SDCMS

Software vendor:
SDCMS

Description

The vulnerability allows a remote attacker to compromise vulnerable system.

The vulnerability exists due to the application does not perform a case sensitive validation of the file extension before allowing file upload within the check_bad() function in appadmincontroller hemecontroller.php file. A remote authenticated attacker can upload a PHP file to the system that contains system() PHP call and file extension ".PHP".

Remediation

Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

External links

http://www.iwantacve.cn/index.php/archives/155/

#VU17936 Dangerous file upload in SDCMS - CVE-2019-9651

Description

Remediation

External links

Please verify you're human