CVE-2022-35944Code Injection in October

CWE-94Code Injection3 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.5%
top 32.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Octobercms OctoberOctober System
Timeline
PublishedOct 13

Description

October is a self-hosted Content Management System (CMS) platform based on the Laravel PHP Framework. This vulnerability only affects installations that rely on the safe mode restriction, commonly used when providing public access to the admin panel. Assuming an attacker has access to the admin panel and permission to open the "Editor" section, they can bypass the Safe Mode (`cms.safe_mode`) restriction to introduce new PHP code in a CMS template using a specially crafted request. The issue has

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 1.2 | Impact: 5.9

Affected Packages3 packages

Packagistoctober/system2.0.02.2.34+1
NVDoctobercms/october3.0.003.0.66+1
CVEListV5octobercms/october>= 3.0.0, < 3.0.66

🔴Vulnerability Details

2
OSV
October CMS Safe Mode bypass leads to authenticated Remote Code Execution2022-10-13
GHSA
October CMS Safe Mode bypass leads to authenticated Remote Code Execution2022-10-13