CVE-2020-14209

🗓️ 02 Sep 2020 16:32:50Reported by mitreType

cve🔗 web.nvd.nist.gov👁 84 Views🌐 WEB

Dolibarr before 11.0.5 allows low-privilege users to upload dangerous files, leading to arbitrary code execution

Reporter	Title	Published	Views	Family All 14
0day.today	Dolibarr ERP/CRM 11.0.4 - File Upload Restrictions Bypass Exploit	25 Mar 202100:00	–	zdt
Circl	CVE-2020-14209	25 Apr 202419:31	–	circl
Cvelist	CVE-2020-14209	2 Sep 202016:32	–	cvelist
Exploit DB	Dolibarr ERP 11.0.4 - File Upload Restrictions Bypass (Authenticated RCE)	25 Mar 202100:00	–	exploitdb
EUVD	EUVD-2022-1983	3 Oct 202520:07	–	euvd
Github Security Blog	Dolibarr Unrestricted Upload of File with Dangerous Type	24 May 202217:27	–	github
NVD	CVE-2020-14209	2 Sep 202017:15	–	nvd
OSV	GHSA-2GCP-XWXG-HQG3 Dolibarr Unrestricted Upload of File with Dangerous Type	24 May 202217:27	–	osv
OSV	UBUNTU-CVE-2020-14209	2 Sep 202017:15	–	osv
Packet Storm	Dolibarr ERP/CRM 11.0.4 Bypass / Code Execution	25 Mar 202100:00	–	packetstorm

NVD

Node

Source	Link
wizlynxgroup	www.wizlynxgroup.com/security-research-advisories/vuln/WLX-2020-012
packetstormsecurity	www.packetstormsecurity.com/files/161955/Dolibarr-ERP-CRM-11.0.4-Bypass-Code-Execution.html
github	www.github.com/Dolibarr/dolibarr/releases/tag/11.0.5

Parameter	Position	Path	Description	CWE
userfile	request body	htdocs/user/document.php?id=%d	Dolibarr file upload endpoint vulnerable to uploading executable files and bypassing extension restrictions	CWE-434
filename	path	documents/users/%d/%s	Access to uploaded documents in the documents directory which can be used to retrieve/trigger payloads via crafted query parameters	CWE-434
query	path	documents/users/%d/%s	Access to uploaded documents in the documents directory which can be used to retrieve/trigger payloads via crafted query parameters	CWE-434

21 Nov 2024 05:02Current

8.9High risk

Vulners AI Score8.9

CVSS 26.5

CVSS 3.18.8

EPSS0.10166