nvd-json-data-feeds/CVE-2017/CVE-2017-117xx/CVE-2017-11715.json

{
  "id": "CVE-2017-11715",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2017-07-28T05:29:00.857",
  "lastModified": "2017-08-09T19:26:12.423",
  "vulnStatus": "Analyzed",
  "descriptions": [
    {
      "lang": "en",
      "value": "job/uploadfile_save.php in MetInfo through 5.3.17 blocks the .php extension but not related extensions, which might allow remote authenticated admins to execute arbitrary PHP code by uploading a .phtml file after certain actions involving admin/system/safe.php and job/cv.php."
    },
    {
      "lang": "es",
      "value": "En el archivo job/uploadfile_save.php en MetInfo hasta la versi\u00f3n 5.3.17, bloquea la extensi\u00f3n .php pero no las extensiones relacionadas, lo que podr\u00eda permitir que los administradores autenticados remotos ejecuten c\u00f3digo PHP arbitrario al cargar un archivo .phtml despu\u00e9s de ciertas acciones que involucran al archivo admin/system/safe.php y job/cv.php."
    }
  ],
  "metrics": {
    "cvssMetricV30": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.0",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "NONE",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9
      }
    ],
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "SINGLE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.5
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 8.0,
        "impactScore": 6.4,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:metinfo_project:metinfo:*:*:*:*:*:*:*:*",
              "versionEndIncluding": "5.3.17",
              "matchCriteriaId": "8205EF34-EC30-4AB3-B13D-FAA94FEE4053"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://lncken.cn/?p=316",
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ]
    }
  ]
}