Vulnerability Details CVE-2020-25790
Typesetter CMS 5.x through 5.1 allows admins to upload and execute arbitrary PHP code via a .php file inside a ZIP archive. NOTE: the vendor disputes the significance of this report because "admins are considered trustworthy"; however, the behavior "contradicts our security policy" and is being fixed for 5.2
Exploit prediction scoring system (EPSS) score
EPSS Score 0.41
EPSS Ranking 97.3%
CVSS Severity
CVSS v3 Score 7.2
CVSS v2 Score 6.5
References
- http://packetstormsecurity.com/files/159503/Typesetter-CMS-5.1-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/159615/Typesetter-CMS-5.1-Remote-Code-Execution.html
- http://seclists.org/fulldisclosure/2020/Oct/11
- https://github.com/Typesetter/Typesetter/issues/674
- http://packetstormsecurity.com/files/159503/Typesetter-CMS-5.1-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/159615/Typesetter-CMS-5.1-Remote-Code-Execution.html
- http://seclists.org/fulldisclosure/2020/Oct/11
- https://github.com/Typesetter/Typesetter/issues/674
Products affected by CVE-2020-25790
-
cpe:2.3:a:typesettercms:typesetter:5.0
-
cpe:2.3:a:typesettercms:typesetter:5.0.1
-
cpe:2.3:a:typesettercms:typesetter:5.1