CyberSec.Space Logo
返回 CVE 浏览器

CVE-2019-16114

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1840%
EPSS Percentile16.70th
Published2019年9月9日
Last Modified2024年11月21日

Vulnerability Description

In ATutor 2.2.4, an unauthenticated attacker can change the application settings and force it to use his crafted database, which allows him to gain access to the application. Next, he can change the directory that the application uploads files to, which allows him to achieve remote code execution. This occurs because install/include/header.php does not restrict certain changes (to db_host, db_login, db_password, and content_dir) within install/include/step5.php.

Affected Platforms (CPE)

📦
Atutor

Atutor

<= 2.2.4

References & Advisories

🔗 https://github.com/MostafaSoliman/Security-Advisories/blob/master/CVE-2019-16114/README.md
🔗 https://github.com/atutor/ATutor/commits/master
🔗 https://github.com/MostafaSoliman/Security-Advisories/blob/master/CVE-2019-16114/README.md
🔗 https://github.com/atutor/ATutor/commits/master

相关漏洞威胁

CVE-2016-25559.8

SQL injection vulnerability in include/lib/mysql_connect.inc.php in ATutor 2.2.1 allows remote attackers to execute arbitrary SQL ...

CVE-2017-10000029.8

ATutor versions 2.2.1 and earlier are vulnerable to a directory traversal and file extension check bypass in the Course component ...

CVE-2014-97539.8

confirm.php in ATutor 2.2 and earlier allows remote attackers to bypass authentication and gain access as an existing user via the...

CVE-2017-10000039.8

ATutor versions 2.2.1 and earlier are vulnerable to an incorrect access control check vulnerability in the Social Application comp...