Description

A file-upload vulnerability exists in Rukovoditel 2.3.1. index.php?module=configuration/save allows the user to upload a background image, and mishandles extension checking. It accepts uploads of PHP content if the first few characters match GIF data, and the filename ends in ".php" with mixed case, such as the .pHp extension.

Remediation

References

CVE-2018-20166

Related Vulnerabilities

WordPress CVE-2012-2400 Vulnerability (CVE-2012-2400)

WordPress Plugin Comment Rating 'id' Parameter SQL Injection (2.9.23)

WordPress Plugin WP Post Page Clone SQL Injection (1.0)

ownCloud CVE-2013-0303 Vulnerability (CVE-2013-0303)

WordPress Plugin Sabre 'tools.php' Cross-Site Scripting (1.2.0)

Severity

High

Classification

CVE-2018-20166 CWE-434 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Missing Update Known Vulnerabilities