October CMS is vulnerable to remote code execution. The vulnerability exists because the library does not properly sanitize the user input before rendering, allowing an attacker who has access to the backend can manipulate web pages via cms.safe_mode
or cms.enableSafeMode
to execute arbitrary code.
github.com/octobercms/library/commit/c393c5ce9ca2c5acc3ed6c9bb0dab5ffd61965fe
github.com/octobercms/october/commit/a1fd5d0248453a11546ff847e7238c430754769e
github.com/octobercms/october/commit/e6867a5eb69f5c723adb33b6ca97fcda99634446
github.com/octobercms/october/security/advisories/GHSA-79jw-2f46-wv22
github.com/octoberrain/system/commit/233c583ebde5ef7372278818b6c5ac6183c0ac66
github.com/octoberrain/system/commit/7c6880e308394e2150dcbdf6ced0dec47724f316