CVE-2024-27612

MEDIUM

Numbas editor <7.3 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-27612. PoCs published by Matheus Alexandre.

AI-analyzed exploit summary This exploit leverages a path traversal vulnerability in Numbas < v7.3 to achieve remote code execution by overwriting the `__init__.py` file with malicious code. It includes functionality to check for vulnerability and deliver a reverse shell payload.

Description

Numbas editor before 7.3 mishandles editing of themes and extensions.

Exploits (1)

exploitdb WORKING POC

by Matheus Alexandre · textwebappsnodejs

https://www.exploit-db.com/exploits/51867

View Code ZIP pw:eip

This exploit leverages a path traversal vulnerability in Numbas < v7.3 to achieve remote code execution by overwriting the `__init__.py` file with malicious code. It includes functionality to check for vulnerability and deliver a reverse shell payload.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Numbas < v7.3

Auth required

Prerequisites: Valid credentials for authentication · Network access to the target · Target running Numbas < v7.3

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1059.004 - Unix Shell T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Product

https://github.com/numbas/Numbas

Product

https://www.numbas.org.uk/blog/2024/03/development-update-march-2024/

Scores

CVSS v3 6.2

EPSS 0.0083

EPSS Percentile 75.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-20

Status published

Products (1)

numbas/editor < 7.3

Published Mar 08, 2024

Tracked Since Feb 18, 2026