CyberSec.Space Logo
返回 CVE 浏览器

CVE-2019-11447

HIGH
8.8
CVSS Severity Score
EPSS Score0.0590%
EPSS Percentile28.18th
Published2019年4月22日
Last Modified2024年11月21日

Vulnerability Description

An issue was discovered in CutePHP CuteNews 2.1.2. An attacker can infiltrate the server through the avatar upload process in the profile area via the avatar_file field to index.php?mod=main&opt=personal. There is no effective control of $imgsize in /core/modules/dashboard.php. The header content of a file can be changed and the control can be bypassed for code execution. (An attacker can use the GIF header for this.)

Affected Platforms (CPE)

📦
Cutephp

Cutenews

= 2.1.2

References & Advisories

🔗 http://packetstormsecurity.com/files/159134/CuteNews-2.1.2-Remote-Code-Execution.html
🔗 http://pentest.com.tr/exploits/CuteNews-2-1-2-Remote-Code-Execution-Metasploit.html
🔗 https://www.exploit-db.com/exploits/46698/
🔗 http://packetstormsecurity.com/files/159134/CuteNews-2.1.2-Remote-Code-Execution.html
🔗 http://pentest.com.tr/exploits/CuteNews-2-1-2-Remote-Code-Execution-Metasploit.html
🔗 https://www.exploit-db.com/exploits/46698/

相关漏洞威胁

CVE-2020-55588.8

CuteNews 2.0.1 allows remote authenticated attackers to execute arbitrary PHP code via unspecified vectors.

CVE-2003-12407.5

PHP remote file inclusion vulnerability in CuteNews 0.88 allows remote attackers to execute arbitrary PHP code via a URL in the cu...

CVE-2004-16607.5

PHP remote file inclusion vulnerability in CuteNews 1.3.6 and earlier allows remote attackers to execute arbitrary PHP code via th...

CVE-2005-30107.5

Direct static code injection vulnerability in the flood protection feature in inc/shows.inc.php in CuteNews 1.4.0 and earlier allo...