Description

The setName function in filesystem/File.php in SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1 allows remote authenticated users with CMS author privileges to execute arbitrary PHP code by changing the extension of an uploaded file.

Remediation

References

CVE-2010-5091

Related Vulnerabilities

Claroline Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-37160)

WordPress Plugin Spider Calendar Cross-Site Scripting and SQL Injection Vulnerabilities (1.0.1)

CakePHP Deserialization of Untrusted Data Vulnerability (CVE-2019-11458)

Artifactory Missing Authorization Vulnerability (CVE-2019-10322)

Piwigo Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2021-40317)

Severity

Medium

Classification

CVE-2010-5091 CWE-94

Tags

Missing Update Known Vulnerabilities