CVE-2018-9848: Code Injection
First published: Sat Apr 07 2018(Updated: )
In Gxlcms QY v1.0.0713, the upload function in Lib\Lib\Action\Admin\UploadAction.class.php allows remote attackers to execute arbitrary PHP code by first using an Admin-Admin-Configsave request to change the config[upload_class] value from jpg,gif,png,jpeg to jpg,gif,png,jpeg,php and then making an Admin-Upload-Upload request.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Gxlcms | =1.0.0713 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2018-9848?
CVE-2018-9848 is a vulnerability in Gxlcms QY v1.0.0713 that allows remote attackers to execute arbitrary PHP code.
How can the upload function in Gxlcms QY v1.0.0713 be exploited?
The upload function in Gxlcms QY v1.0.0713 can be exploited by changing the 'config[upload_class]' value and then uploading a malicious PHP file.
Is the severity of CVE-2018-9848 high?
Yes, CVE-2018-9848 has a severity rating of 9.8 (critical).
What is the Common Weakness Enumeration (CWE) for CVE-2018-9848?
The CWE for CVE-2018-9848 is CWE-94 (Improper Control of Generation of Code).
Where can I find more information about CVE-2018-9848?
You can find more information about CVE-2018-9848 at http://www.atksec.com/cve/GxlcmsQY-v1.0.0713-upload-getshell/index.html.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/references
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/softwarecombine
- agent/event
- agent/description
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/gxlcms
- canonical/gxlcms
- version/gxlcms/1.0.0713