SB2022041111 - Multiple vulnerabilities in E-Commerce Website
Published: April 11, 2022
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 2 secuirty vulnerabilities.
1) Arbitrary file upload (CVE-ID: CVE-2022-27346)
The vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to insufficient validation of file extension when uploading files in the index.php script. A remote attacker can upload and execute arbitrary file on the system.
2) Arbitrary file upload (CVE-ID: CVE-2022-27357)
The vulnerability allows a remote attacker to compromise vulnerable system.
The vulnerability exists due to insufficient validation of file extension when uploading files in the Customer Image. A remote attacker can upload and execute arbitrary file on the system.
Remediation
Cybersecurity Help is not aware of any official remediation provided by the vendor.
References
- https://drive.google.com/file/d/1SSBY92vfO1Q_Oska6mdpV9vuHmu0BVxk/view?usp=sharing
- https://github.com/D4rkP0w4r/Full-Ecommece-Website-Slides-Unrestricted-File-Upload-RCE-POC
- http://packetstormsecurity.com/files/166654/E-Commerce-Website-1.1.0-Shell-Upload.html
- https://github.com/D4rkP0w4r/CVEs/blob/main/Ecommerce%20Website%20Upload%20%2B%20RCE/POC.md
- https://drive.google.com/file/d/1m6rovKb3ZWJ-vbsVlfaZDGmyZ_F13nCf/view?usp=sharing
- http://packetstormsecurity.com/files/166652/E-Commerce-Website-1.0-Shell-Upload.html