CSRF issue leads to complete unauthenticated server side command execution.

NavigateCMS / Navigate-CMS

Navigate CMS, a very powerful open source content management system for everybody.

http://www.navigatecms.com

GNU General Public License v2.0

8 stars 4 forks source link

CSRF issue leads to complete unauthenticated server side command execution. #8

Closed SecGus closed 4 years ago

SecGus commented 4 years ago

I have found a way to execute commands on the remote server if an attacker can get an administrator to click on a link sent to them, also known as one click RCE.

This attack chain is fairly simple to exploit, and fairly simple to fix.

Let me know if more details are wanted.

NavigateCMS commented 4 years ago

Fixed by 967da65e40efbdf31973b8f065de9eabebd3accf and other commits