CVE-2017-9442

HIGH

BigTree CMS <4.2.18 - Authenticated RCE

Title source: llm
STIX 2.1

Description

BigTree CMS through 4.2.18 allows remote authenticated users to execute arbitrary code by uploading a crafted package containing a PHP web shell, related to extraction of a ZIP archive to filename patterns such as cache/package/xxx/yyy.php. This issue exists in core\admin\modules\developer\extensions\install\unpack.php and core\admin\modules\developer\packages\install\unpack.php. NOTE: the vendor states "You must implicitly trust any package or extension you install as they all have the ability to write PHP files.

References (1)

Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://github.com/bigtreecms/BigTree-CMS/issues/291

Scores

CVSS v3 8.8
EPSS 0.0245
EPSS Percentile 82.4%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-94
Status published
Products (1)
bigtreecms/bigtree_cms < 4.2.18
Published Jun 05, 2017
Tracked Since Feb 18, 2026