CVE-2019-25687

CRITICAL

Pegasus CMS 1.0 Remote Code Execution via extra_fields.php

Title source: cna

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-25687. PoCs published by R3zk0n.

AI-analyzed exploit summary This exploit demonstrates a directory traversal and remote code execution vulnerability in Pegasus CMS via the extra_fields.php plugin. It leverages the 'safer eval' technique to execute arbitrary commands through the 'action' parameter in a POST request.

Description

Pegasus CMS 1.0 contains a remote code execution vulnerability in the extra_fields.php plugin that allows unauthenticated attackers to execute arbitrary commands by exploiting unsafe eval functionality. Attackers can send POST requests to the submit.php endpoint with malicious PHP code in the action parameter to achieve code execution and obtain an interactive shell.

Exploits (1)

exploitdb WORKING POC

by R3zk0n · pythonwebappsphp

https://www.exploit-db.com/exploits/46542

View Code ZIP pw:eip

This exploit demonstrates a directory traversal and remote code execution vulnerability in Pegasus CMS via the extra_fields.php plugin. It leverages the 'safer eval' technique to execute arbitrary commands through the 'action' parameter in a POST request.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Pegasus CMS version 1.0

No auth needed

Prerequisites: Target must be running Pegasus CMS with the vulnerable extra_fields.php plugin accessible

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Apr 07, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit exploit

ExploitDB-46542

https://www.exploit-db.com/exploits/46542

Product product

Official Product Homepage

https://www.wisdom.com.au/web/pegasus-cms

Third Party Advisory third-party-advisory

VulnCheck Advisory: Pegasus CMS 1.0 Remote Code Execution via extra_fields.php

https://www.vulncheck.com/advisories/pegasus-cms-remote-code-execution-via-extra-fields-php

Scores

CVSS v3 9.8

EPSS 0.0142

EPSS Percentile 69.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact total

Details

CWE

CWE-22

Status published

Products (2)

wisdom/Pegasus CMS 1.0

wisdom/pegasus_cms 1.0

Published Apr 05, 2026

Tracked Since Apr 06, 2026