CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2020-9309

HIGH
8.8
CVSS Severity Score
EPSS Score0.0680%
EPSS Percentile17.20th
Published2020年7月15日
Last Modified2024年11月21日

Vulnerability Description

Silverstripe CMS through 4.5 can be susceptible to script execution from malicious upload contents under allowed file extensions (for example HTML code in a TXT file). When these files are stored as protected or draft files, the MIME detection can cause browsers to execute the file contents. Uploads stored as protected or draft files are allowed by default for authorised users only, but can also be enabled through custom logic as well as modules such as silverstripe/userforms. Sites using the previously optional silverstripe/mimevalidator module can configure MIME whitelists rather than extension whitelists, and hence prevent this issue. Sites on the Common Web Platform (CWP) use this module by default, and are not affected.

Affected Platforms (CPE)

📦
Silverstripe

Mimevalidator

< 2.0.0
📦
Silverstripe

Recipe

>= 4.0.0 and < 4.6.0

References & Advisories

🔗 https://www.silverstripe.org/download/security-releases/CVE-2020-9309
🔗 https://www.silverstripe.org/download/security-releases/CVE-2020-9309

相關漏洞威脅

CVE-2020-079610.0

A remote code execution vulnerability exists in the way that the Microsoft Server Message Block 3.1.1 (SMBv3) protocol handles cer...

CVE-2020-676910.0

Missing Authentication for Critical Function in the Bosch Video Streaming Gateway (VSG) allows an unauthenticated remote attacker ...

CVE-2020-677010.0

Deserialization of Untrusted Data in the BVMS Mobile Video Service (BVMS MVS) allows an unauthenticated remote attacker to execute...

CVE-2020-393610.0

UltraLog Express device management interface does not properly filter user inputted string in some specific parameters, attackers ...