CVE-2019-9651: Code Injection
First published: Mon Mar 11 2019(Updated: )
An issue was discovered in SDCMS V1.7. In the \app\admin\controller\themecontroller.php file, the check_bad() function's filtering is not strict, resulting in PHP code execution. This occurs because some dangerous PHP functions (such as "eval") are blocked but others (such as "system") are not, and because ".php" is blocked but ".PHP" is not blocked.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Sdcms | =1.7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-9651?
CVE-2019-9651 is rated as a critical vulnerability due to its potential for remote code execution.
How do I fix CVE-2019-9651?
To fix CVE-2019-9651, it is recommended to upgrade to a patched version of SDCMS that addresses the filtering issues in themecontroller.php.
What versions of SDCMS are affected by CVE-2019-9651?
CVE-2019-9651 affects SDCMS version 1.7.
What type of vulnerability is CVE-2019-9651?
CVE-2019-9651 is a remote code execution vulnerability due to improper input filtering.
Can CVE-2019-9651 be exploited remotely?
Yes, CVE-2019-9651 can be exploited remotely without authentication, allowing attackers to execute arbitrary PHP code.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/references
- agent/first-publish-date
- agent/description
- agent/author
- agent/last-modified-date
- agent/softwarecombine
- agent/event
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/sdcms
- canonical/sdcms
- version/sdcms/1.7