Description

The setName function in filesystem/File.php in SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1 allows remote authenticated users with CMS author privileges to execute arbitrary PHP code by changing the extension of an uploaded file.

Remediation

References

CVE-2010-5091

Related Vulnerabilities

Atlassian Confluence Improper Control of Dynamically-Managed Code Resources Vulnerability (CVE-2019-15006)

EspoCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-17301)

Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33508)

RubyGems 7PK - Security Features Vulnerability (CVE-2015-3900)

Oracle JRE CVE-2012-0497 Vulnerability (CVE-2012-0497)

Severity

Medium

Classification

CVE-2010-5091 CWE-94

Tags

Missing Update Known Vulnerabilities