Description

The Strapi framework before 3.0.0-beta.17.8 is vulnerable to Remote Code Execution in the Install and Uninstall Plugin components of the Admin panel, because it does not sanitize the plugin name, and attackers can inject arbitrary shell commands to be executed by the execa function.

Remediation

References

https://bittherapy.net/post/strapi-framework-remote-code-execution/

https://github.com/strapi/strapi/pull/4636

http://packetstormsecurity.com/files/163950/Strapi-CMS-3.0.0-beta.17.4-Remote-Code-Execution.html

http://packetstormsecurity.com/files/163940/Strapi-3.0.0-beta.17.7-Remote-Code-Execution.html

Related Vulnerabilities

CVE-2021-39234 Vulnerability in maven package org.apache.ozone:ozone-common

CVE-2023-26920 Vulnerability in maven package org.webjars.npm:fast-xml-parser

CVE-2018-3772 Vulnerability in npm package whereis

CVE-2022-35916 Vulnerability in npm package @openzeppelin/contracts-upgradeable

CVE-2020-2229 Vulnerability in maven package org.jenkins-ci.main:jenkins-core

Severity

High

Classification

CWE-78 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Tags

Exploit Third Party Advisory Patch VDB Entry