Published: 19/09/2020 Updated: 11/04/2024

CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8

CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2

VMScore: 578

Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P

Typesetter CMS 5.x up to and including 5.1 allows admins to upload and execute arbitrary PHP code via a .php file inside a ZIP archive. NOTE: the vendor disputes the significance of this report because "admins are considered trustworthy"; however, the behavior "contradicts our security policy" and is being fixed for 5.2

Vulnerable Product	Search on Vulmon	Subscribe to Product
typesettercms typesetter

Typesetter CMS version 51 authenticated remote code execution exploit ...

Full Disclosure mailing list archives   By Date By Thread </form>    CVE-2020-25790   From: Rodolfo Augusto do Nascimento Tavares < ...

Typesetter CMS文件上传漏洞环境

CVE-2020-25790 Typesetter CMS文件上传漏洞环境拉取方式 docker pull mtwf/typesetter_cve-2020-25790:51 docker run -it -d -p 80:80 mtwf/typesetter_cve-2020-25790:51 /bin/bash -c "service apache2 start;/bin/bash" typesetter账号密码为admin:admin 漏洞复现过程

CWE-434 https://github.com/Typesetter/Typesetter/issues/674 http://seclists.org/fulldisclosure/2020/Oct/11 http://packetstormsecurity.com/files/159503/Typesetter-CMS-5.1-Remote-Code-Execution.html http://packetstormsecurity.com/files/159615/Typesetter-CMS-5.1-Remote-Code-Execution.html https://nvd.nist.gov https://github.com/7Mitu/CVE-2020-25790 http://seclists.org/fulldisclosure/2020/Oct/11

CVE-2020-25790

Vulnerability Summary

Vulnerability Trend

Exploits

Mailing Lists

Github Repositories

References

Vulmon Search

About

Products

Connect