nvd-json-data-feeds/CVE-2019/CVE-2019-201xx/CVE-2019-20183.json

{
  "id": "CVE-2019-20183",
  "sourceIdentifier": "cve@mitre.org",
  "published": "2020-01-09T22:15:13.223",
  "lastModified": "2023-11-07T03:08:40.397",
  "vulnStatus": "Modified",
  "descriptions": [
    {
      "lang": "en",
      "value": "uploadimage.php in Employee Records System 1.0 allows upload and execution of arbitrary PHP code because file-extension validation is only on the client side. The attacker can modify global.js to allow the .php extension."
    },
    {
      "lang": "es",
      "value": "El archivo uploadimage.php en Employee Records System versi\u00f3n 1.0, permite la carga y ejecuci\u00f3n de c\u00f3digo PHP arbitrario porque la comprobaci\u00f3n de la extensi\u00f3n de archivo es solo en el lado del cliente. El atacante puede modificar el archivo global.js para permitir la extensi\u00f3n .php."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "attackVector": "NETWORK",
          "attackComplexity": "LOW",
          "privilegesRequired": "HIGH",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH",
          "baseScore": 7.2,
          "baseSeverity": "HIGH"
        },
        "exploitabilityScore": 1.2,
        "impactScore": 5.9
      }
    ],
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:N/AC:L/Au:S/C:P/I:P/A:P",
          "accessVector": "NETWORK",
          "accessComplexity": "LOW",
          "authentication": "SINGLE",
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.5
        },
        "baseSeverity": "MEDIUM",
        "exploitabilityScore": 8.0,
        "impactScore": 6.4,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-434"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:employee_records_system_project:employee_records_system:1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "38DD5961-32F2-42F9-AE54-C25396B40101"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://medium.com/%40Pablo0xSantiago/cve-2019-20183-employee-records-system-bypass-file-upload-to-rce-ea2653660b34",
      "source": "cve@mitre.org"
    }
  ]
}