CVE-2018-18083

CRITICAL

DuomiCMS 3.0 - Remote Code Execution via search.php searchword Parameter

Title source: llm

Description

An issue was discovered in DuomiCMS 3.0. Remote PHP code execution is possible via the search.php searchword parameter because "eval" is used during "if" processing.

References (2)

Core 2

Core References

Exploit, Third Party Advisory x_refsource_misc

https://github.com/Mochazz/Mochazz.github.io/blob/master/2018/09/30/DuomiCms3.0%E6%9C%80%E6%96%B0%E7%89%88%E6%BC%8F%E6%B4%9E%E6%8C%96%E6%8E%98/index.html

View Exploit ZIP pw:eip

Exploit, Third Party Advisory x_refsource_misc

https://mochazz.github.io/2018/09/30/DuomiCms3.0%E6%9C%80%E6%96%B0%E7%89%88%E6%BC%8F%E6%B4%9E%E6%8C%96%E6%8E%98/

Scores

CVSS v3 9.8

EPSS 0.0248

EPSS Percentile 82.6%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-94

Status published

Products (1)

comsenz/duomicms 3.0

Published Oct 09, 2018

Tracked Since Feb 18, 2026