In Wcms 0.3.2, an attacker can send a crafted request from a vulnerable web application backend server /wcms/wex/html.php via the finish parameter and the textAreaCode parameter. It can write arbitrary strings into custom file names and upload any files, and write malicious code to execute scripts to trigger command execution.
References
Link | Resource |
---|---|
https://github.com/vedees/wcms/issues/15 | Exploit Issue Tracking |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-05-22T00:00:00
Updated: 2023-05-22T00:00:00
Reserved: 2023-04-29T00:00:00
Link: CVE-2023-31689
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-05-22T20:15:10.887
Modified: 2023-05-27T02:12:59.433
Link: CVE-2023-31689
JSON object: View
Redhat Information
No data.
CWE