CVE-2013-1668
published 2014-05-23CVE-2013-1668: The uploadFile function in upload/index.php in CosCMS before 1.822 allows remote administrators to execute arbitrary commands via shell metacharacters in the…
PriorityP260high8.5CVSS 2.0
AVNACMAuSCCICAC
EXPLOIT
EPSS
6.98%
93.3th percentile
The uploadFile function in upload/index.php in CosCMS before 1.822 allows remote administrators to execute arbitrary commands via shell metacharacters in the name of an uploaded file.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| coscms | coscms | <= 1.721 | — |
| coscms | coscms | — | — |
| coscms | coscms | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Monitor HTTP POST requests to /gallery/upload/index containing multipart/form-data where the 'file' field's filename parameter includes shell metacharacters (e.g., &, |, ;, >, <). ↗
- →Inspect the $_FILES['file']['name'] value passed to PHP exec() in upload/index.php for shell metacharacters indicative of command injection. ↗
- →Look for the multipart boundary pattern '-----------------------------21456260222104' in HTTP POST bodies as a PoC-specific artifact, though attackers may vary this value. ↗
- ·Successful exploitation requires the attacker to be authenticated with file upload privileges; user registration is disabled by default, limiting the attack surface to compromised or malicious admin accounts. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2013-03/0033.htmlhttp://osvdb.org/90927http://www.coscms.org/blog/view/4/Version-1.822http://www.exploit-db.com/exploits/24629http://www.securityfocus.com/bid/58332https://github.com/diversen/gallery/commit/7d58f870e8edc6597485dd1b80ea9fb78580190chttps://www.htbridge.com/advisory/HTB23145http://archives.neohapsis.com/archives/bugtraq/2013-03/0033.htmlhttp://osvdb.org/90927http://www.coscms.org/blog/view/4/Version-1.822http://www.exploit-db.com/exploits/24629http://www.securityfocus.com/bid/58332https://github.com/diversen/gallery/commit/7d58f870e8edc6597485dd1b80ea9fb78580190chttps://www.htbridge.com/advisory/HTB23145
2014-05-23
Published