Lucene search

[email protected]CVE-2019-13956

HistoryJul 18, 2019 - 6:15 p.m.

CVE-2019-13956

2019-07-1818:15:12

CWE-94

[email protected]

web.nvd.nist.gov

cve-2019-13956

discuz!ml

remote attackers

arbitrary php code

language cookie

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.04 Low

EPSS

Percentile

92.1%

JSON

Discuz!ML 3.2 through 3.4 allows remote attackers to execute arbitrary PHP code via a modified language cookie, as demonstrated by changing 4gH4_0df5_language=en to 4gH4_0df5_language=en’.phpinfo().'; (if the random prefix 4gH4_0df5_ were used).

Affected configurations

NVD

Node

codersclubdiscuz\!mlRange3.2–3.4

CPENameOperatorVersion
codersclub:discuz\!mlcodersclub discuz!mlle3.4

CPE	Name	Operator	Version
codersclub:discuz\!ml	codersclub discuz!ml	le	3.4

References

esoln.net/esoln/blog/2019/06/14/discuzml-v-3-x-code-injection-vulnerability/

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.7 High

AI Score

Confidence

High

0.04 Low

EPSS

Percentile

92.1%

JSON

Related for CVE-2019-13956

prion1 cvelist1 vulnerlab2 githubexploit1 nvd1