Unrestricted file upload

2019-10-1318:15:00

PRIOn knowledge base

www.prio-n.com

5.1 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.2%

JSON

Gila CMS through 1.11.4 allows Unrestricted Upload of a File with a Dangerous Type via the moveAction function in core/controllers/fm.php. The attacker needs to use admin/media_upload and fm/move.

CPENameOperatorVersion
gila_cmsle1.11.4

CPE	Name	Operator	Version
	gila_cms	le	1.11.4

References

github.com/GilaCMS/gila/pull/49

rastating.github.io/gila-cms-upload-filter-bypass-and-rce/