Description
Dolibarr before 11.0.5 allows low-privilege users to upload files of dangerous types, leading to arbitrary code execution. This occurs because .pht and .phar files can be uploaded. Also, a .htaccess file can be uploaded to reconfigure access control (e.g., to let .noexe files be executed as PHP code to defeat the .noexe protection mechanism).
Remediation
References
Related Vulnerabilities
Artifactory Insufficiently Protected Credentials Vulnerability (CVE-2020-2165)
ownCloud Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2012-4391)
WordPress Plugin Border Loading Bar Multiple Cross-Site Scripting Vulnerabilities (1.0)
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1455)
WordPress Plugin WooCommerce-Store Toolkit Privilege Escalation (1.5.7)