Input validation error in b2evolution

#VU9831 Input validation error in b2evolution

Published: 2018-01-02 | Updated: 2018-01-03

Vulnerability identifier: #VU9831

Vulnerability risk: Medium

CVSSv3.1: 7.1 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2017-1000423

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
b2evolution
Web applications / CMS

Vendor: b2evolution.net

Description

The vulnerability allows a remote attacker to execute arbitrary PHP code.

The vulnerability exists due to improper input validation (backslash and single quote escape) in basic install functionality. A remote attacker can execute arbitrary PHP code.

Mitigation
Install update from vendor's website.

Vulnerable software versions

b2evolution: 6.6.0 - 6.8.10

External links
http://github.com/b2evolution/b2evolution/commit/0096a3ebc85f6aadbda2c4427cd092a538b161d2
http://github.com/b2evolution/b2evolution/commit/b899d654d931f3bf3cfbbdd71e0d1a0f3a16d04c

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

PHP code injection in b2evolution