GHSA-HV78-CWP4-8R7R baserCMS has Unsafe File Upload Leading to Remote Code Execution (RCE)

Details The application's restore function allows users to upload a .zip file, which is then automatically extracted. A PHP file inside the archive is included using requireonce without validating or restricting the filename. An attacker can craft a malicious PHP file within the zip and achieve...

The vulnerability of the require_once component in the PHP-Fusion CMS system allows a hacker to execute arbitrary code.

The vulnerability of the requireonce component in the PHP-Fusion CMS system relates to the ability to implement functionality from an untrusted management environment. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by loading a specially crafted php file...

PT-2023-4770 · Unknown · Php-Fusion

Name of the Vulnerable Software and Affected Versions: PHPFusion affected versions not specified Description: The issue is related to insufficient sanitization of tainted file names that are directly concatenated with a path and subsequently passed to a require once statement. This allows arbitra...