Lucene search
NhiephonAE5BB359-7E53-498B-848E-540C05B44C54HistoryMar 10, 2022 - 2:01 a.m.
Unrestricted Upload of File with Dangerous Type
2022-03-1002:01:25
nhiephon
www.huntr.dev
18
malicious user
bypass checking
.phtm file
.php6 file
stored xss
admin login
websites setting
edit page
add files
impact
EPSS
0.001
Percentile
21.4%
Description
Malicious user can bypass checking and upload .phtm or .php6 file which leads to stored XSS.
Proof of Concept
- Step 1: Login as admin at https://demo.microweber.org/demo/admin/
- Step 2: Go to Websites setting and Edit any page (https://demo.microweber.org/demo/admin/page/24/edit)
- Under Pictures tag, choose Add files with content and extension below
.phtm
<a></a>
https://demo.microweber.org/demo/userfiles/media/default/123_7.phtm
https://drive.google.com/file/d/1eDNDRLquNuev0diRuMt3Z2cxKhEj5bt4/
.php6
<img src>
https://demo.microweber.org/demo/userfiles/media/default/123.php6
https://drive.google.com/file/d/15KatRGUfbCndq3oMHhUzjXosIfTGW908/
Impact
Stored XSS
Related
osv
osv
CVE-2022-0912
2022-03-11 10:15:07
Unrestricted Upload of File with Dangerous Type in microweber
2022-03-12 00:00:35
cve
cve
CVE-2022-0912
2022-03-11 10:15:07
prion
prion
Unrestricted file upload
2022-03-11 10:15:00
veracode
veracode
Unrestricted Upload Of File With Dangerous Type
2022-03-14 04:52:44
cvelist
cvelist
cnvd
cnvd
Microweber file upload vulnerability
2022-03-15 00:00:00
github
github
Unrestricted Upload of File with Dangerous Type in microweber
2022-03-12 00:00:35
nvd
nvd
CVE-2022-0912
2022-03-11 10:15:07