Description

The Strapi framework before 3.0.0-beta.17.8 is vulnerable to Remote Code Execution in the Install and Uninstall Plugin components of the Admin panel, because it does not sanitize the plugin name, and attackers can inject arbitrary shell commands to be executed by the execa function.

Remediation

References

https://bittherapy.net/post/strapi-framework-remote-code-execution/

https://github.com/strapi/strapi/pull/4636

http://packetstormsecurity.com/files/163950/Strapi-CMS-3.0.0-beta.17.4-Remote-Code-Execution.html

http://packetstormsecurity.com/files/163940/Strapi-3.0.0-beta.17.7-Remote-Code-Execution.html

Related Vulnerabilities

CVE-2019-15477 Vulnerability in maven package org.jooby:jooby

CVE-2023-26129 Vulnerability in npm package bwm-ng

CVE-2021-27515 Vulnerability in maven package org.webjars.bowergithub.unshiftio:url-parse

CVE-2023-26487 Vulnerability in maven package org.webjars.npm:vega-functions

CVE-2020-7631 Vulnerability in npm package diskusage-ng

Severity

High

Classification

CWE-78 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Tags

Exploit Third Party Advisory Patch VDB Entry