CVE-2020-8639

Published: Apr 3, 2020Modified: Nov 21, 2024

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

An unrestricted file upload vulnerability in keywordsImport.php in TestLink 1.9.20 allows remote attackers to execute arbitrary code by uploading a file with an executable extension. This allows an authenticated attacker to upload a malicious file (containing PHP code to execute operating system commands) to a publicly accessible directory of the application.

Affected (1)

Products: Testlink: Testlink

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Testlink Testlink	Version 1.9.20

Related CWEs

Unrestricted Upload of File with Dangerous Type

The product allows the upload or transfer of dangerous file types that are automatically processed within its environment.

References (6)

http://packetstormsecurity.com/files/161401/TestLink-1.9.20-Shell-Upload.html

Source: cve@mitre.org

ExploitThird Party AdvisoryVDB Entry

https://ackcent.com/blog/testlink-1.9.20-unrestricted-file-upload-and-sql-injection/

Source: cve@mitre.org

ExploitPatchThird Party Advisory

https://github.com/TestLinkOpenSourceTRMS/testlink-code/commit/57d81ae350d569c5c95087997fe051c49e14516d

Source: cve@mitre.org

PatchThird Party Advisory

http://packetstormsecurity.com/files/161401/TestLink-1.9.20-Shell-Upload.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party AdvisoryVDB Entry

https://ackcent.com/blog/testlink-1.9.20-unrestricted-file-upload-and-sql-injection/

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitPatchThird Party Advisory

https://github.com/TestLinkOpenSourceTRMS/testlink-code/commit/57d81ae350d569c5c95087997fe051c49e14516d

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

Timeline

No history available yet.