Description

A file upload filter bypass exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. This can be exploited by an authenticated user with admin privileges to edit configuration keys to remove file extension filters, potentially resulting in the malicious upload and execution of malicious files on the server.

Remediation

References

CVE-2019-7912

Related Vulnerabilities

Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-8129)

WordPress Plugin BuddyPress Edit Activity Cross-Site Scripting (1.0.5)

phpMyFAQ Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-15733)

Django Uncontrolled Recursion Vulnerability (CVE-2019-14235)

XOOPS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2008-5665)

Severity

High

Classification

CVE-2019-7912 CWE-434 CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities