CVE-2017-18048

high-risk
Published 2018-01-23

Monstra CMS 3.0.4 allows users to upload arbitrary files, which leads to remote command execution on the server, for example because .php (lowercase) is blocked but .PHP (uppercase) is not.

Do I need to act?

!
77.0% chance of exploitation in next 30 days
EPSS score — higher than 23% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.8/10 High
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Monstra

References (8)

Exploit https://blogs.securiteam.com/index.php/archives/3559
Patch https://github.com/monstra-cms/monstra/issues/426
Exploit https://securityprince.blogspot.in/2017/12/monstra-cms-304-arbitrary-file-upload...
Exploit https://www.exploit-db.com/exploits/43348/
Exploit https://blogs.securiteam.com/index.php/archives/3559
Patch https://github.com/monstra-cms/monstra/issues/426
Exploit https://securityprince.blogspot.in/2017/12/monstra-cms-304-arbitrary-file-upload...
Exploit https://www.exploit-db.com/exploits/43348/
55
/ 100
high-risk
Severity 30/34 · Critical
Exploitability 20/34 · Moderate
Exposure 5/34 · Minimal