CVE-2017-10993
published 2017-07-21CVE-2017-10993: Contao before 3.5.28 and 4.x before 4.4.1 allows remote attackers to include and execute arbitrary local PHP files via a crafted parameter in a URL, aka…
PriorityP350high8.8CVSS 3.0
AVNACLPRLUINSUCHIHAH
EPSS
1.96%
77.8th percentile
Contao before 3.5.28 and 4.x before 4.4.1 allows remote attackers to include and execute arbitrary local PHP files via a crafted parameter in a URL, aka Directory Traversal.
Affected
31 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| contao | contao | >= 4.0.0 < 4.4.1 | 4.4.1 |
| contao | contao_cms | <= 3.5.27 | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
| contao | contao_cms | — | — |
CVSS provenance
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Contao Core directory traversal vulnerability
ghsa·2022-05-13
CVE-2017-10993 [HIGH] CWE-22 Contao Core directory traversal vulnerability
Contao Core directory traversal vulnerability
A logged in back end user can include arbitrary PHP files by manipulating an URL parameter. Since Contao does not allow to upload PHP files in the file manager, the attack is limited to the existing PHP files on the server.
OSV
Contao Core directory traversal vulnerability
osv·2022-05-13
CVE-2017-10993 [HIGH] Contao Core directory traversal vulnerability
Contao Core directory traversal vulnerability
A logged in back end user can include arbitrary PHP files by manipulating an URL parameter. Since Contao does not allow to upload PHP files in the file manager, the attack is limited to the existing PHP files on the server.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2017-07-21
Published