What is CVE-2020-9309?

CVE-2020-9309 is a vulnerability in Silverstripe CMS through version 4.5 that allows script execution from malicious upload contents.

What is the severity of CVE-2020-9309?

CVE-2020-9309 has a severity score of 8.8, which is considered high.

How can Silverstripe CMS through version 4.5 be vulnerable to CVE-2020-9309?

Silverstripe CMS through version 4.5 can be vulnerable to CVE-2020-9309 if malicious upload contents are allowed under file extensions and stored as protected or draft files.

What is the impact of CVE-2020-9309?

CVE-2020-9309 can allow an attacker to execute scripts through the file contents of malicious uploads in Silverstripe CMS.

How can I mitigate the vulnerability CVE-2020-9309?

To mitigate CVE-2020-9309, ensure that only trusted file extensions are allowed for upload contents and consider validating file contents against their declared MIME types.

Vulnerability/
CVE-2020-9309

high

8.8

CWE

434

15/7/2020

24/5/2022

4/8/2024

CVE-2020-9309: Malicious File Upload

First published: Wed Jul 15 2020(Updated: )

Silverstripe CMS through 4.5 can be susceptible to script execution from malicious upload contents under allowed file extensions (for example HTML code in a TXT file). When these files are stored as protected or draft files, the MIME detection can cause browsers to execute the file contents. Uploads stored as protected or draft files are allowed by default for authorised users only, but can also be enabled through custom logic as well as modules such as silverstripe/userforms. Sites using the previously optional silverstripe/mimevalidator module can configure MIME whitelists rather than extension whitelists, and hence prevent this issue. Sites on the Common Web Platform (CWP) use this module by default, and are not affected.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
composer/silverstripe/cms	<=4.5.0
Silverstripe Mimevalidator	<2.0.0
Silverstripe Recipe	>=4.0.0<4.6.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2020-9309?
CVE-2020-9309 is a vulnerability in Silverstripe CMS through version 4.5 that allows script execution from malicious upload contents.
What is the severity of CVE-2020-9309?
CVE-2020-9309 has a severity score of 8.8, which is considered high.
How can Silverstripe CMS through version 4.5 be vulnerable to CVE-2020-9309?
Silverstripe CMS through version 4.5 can be vulnerable to CVE-2020-9309 if malicious upload contents are allowed under file extensions and stored as protected or draft files.
What is the impact of CVE-2020-9309?
CVE-2020-9309 can allow an attacker to execute scripts through the file contents of malicious uploads in Silverstripe CMS.
How can I mitigate the vulnerability CVE-2020-9309?
To mitigate CVE-2020-9309, ensure that only trusted file extensions are allowed for upload contents and consider validating file contents against their declared MIME types.

collector/github-advisory-latest
alias/GHSA-h77w-655f-6j3m
alias/CVE-2020-9309
collector/github-advisory
collector/nvd-index
collector/nvd-cve
agent/author
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/references
agent/severity
agent/weakness
agent/description
agent/first-publish-date
agent/event
agent/trending
agent/tags
agent/source
package-manager/composer
vendor/silverstripe
canonical/silverstripe mimevalidator
canonical/silverstripe recipe
version/silverstripe recipe/4.0.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.