CVE-2024-27923
published 2024-03-21CVE-2024-27923: Grav is a content management system (CMS). Prior to version 1.7.43, users who may write a page may use the `frontmatter` feature due to insufficient permission…
PriorityP258high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
1.36%
68.2th percentile
Grav is a content management system (CMS). Prior to version 1.7.43, users who may write a page may use the `frontmatter` feature due to insufficient permission validation and inadequate file name validation. This may lead to remote code execution. Version 1.7.43 fixes this issue.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| getgrav | grav | < 1.7.43 | 1.7.43 |
| getgrav | grav | >= 0 < 1.7.43 | 1.7.43 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Remote Code Execution by uploading a phar file using frontmatter
osv·2024-03-06
CVE-2024-27923 [HIGH] Remote Code Execution by uploading a phar file using frontmatter
Remote Code Execution by uploading a phar file using frontmatter
### Summary
- Due to insufficient permission verification, user who can write a page use frontmatter feature.
- Inadequate File Name Validation
### Details
1. Insufficient Permission Verification
In Grav CMS, "[Frontmatter](https://learn.getgrav.org/17/content/headers)" refers to the metadata block located at the top of a Markdown file. Frontmatter serves the purpose of providing additional information about a specific page or post.
In this feature, only administrators are granted access, while regular users who can create pages are not. However, if a regular user adds the data[_json][header][form] parameter to the POST Body while creating a page, they can use Frontmatter. The demonstration of this vulnerability is provide
GHSA
Remote Code Execution by uploading a phar file using frontmatter
ghsa·2024-03-06
CVE-2024-27923 [HIGH] CWE-287 Remote Code Execution by uploading a phar file using frontmatter
Remote Code Execution by uploading a phar file using frontmatter
### Summary
- Due to insufficient permission verification, user who can write a page use frontmatter feature.
- Inadequate File Name Validation
### Details
1. Insufficient Permission Verification
In Grav CMS, "[Frontmatter](https://learn.getgrav.org/17/content/headers)" refers to the metadata block located at the top of a Markdown file. Frontmatter serves the purpose of providing additional information about a specific page or post.
In this feature, only administrators are granted access, while regular users who can create pages are not. However, if a regular user adds the data[_json][header][form] parameter to the POST Body while creating a page, they can use Frontmatter. The demonstration of this vulnerability is provide
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://github.com/getgrav/grav/commit/e3b0aa0c502aad251c1b79d1ee973dcd93711f07https://github.com/getgrav/grav/security/advisories/GHSA-f6g2-h7qv-3m5vhttps://github.com/getgrav/grav/commit/e3b0aa0c502aad251c1b79d1ee973dcd93711f07https://github.com/getgrav/grav/security/advisories/GHSA-f6g2-h7qv-3m5v
2024-03-21
Published