CVE-2024-39165

QR/demoapp/qr_image.php in Asial JpGraph Professional through 4.2.6-pro allows remote attackers to execute arbitrary code via a PHP payload in the data parameter in conjunction with a .php file name in the filename parameter. This occurs because an unnecessary QR/demoapp folder.is shipped with the product.

CVSS v3 6.8 MEDIUM

6.8^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.1 / Impact : 4.7

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact LOW

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://www.synacktiv.com/advisories/jpgraph-professional-version-pre-authenticated-remote-code-execution

Configurations

No configuration.

History

01 Aug 2024, 13:55

Type	Values Removed	Values Added
CWE		CWE-94
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 6.8

05 Jul 2024, 12:55

Type	Values Removed	Values Added
Summary		(es) QR/demoapp/qr_image.php en Asial JpGraph Professional hasta 4.2.6-pro permite a atacantes remotos ejecutar código de su elección a través de una carga PHP en el parámetro de datos junto con un nombre de archivo .php en el parámetro de nombre de archivo. Esto ocurre porque con el producto se envía una carpeta QR/demoapp innecesaria.

04 Jul 2024, 13:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-07-04 13:15

Updated : 2024-08-01 13:55

NVD link : CVE-2024-39165

Mitre link : CVE-2024-39165

CVE.ORG link : CVE-2024-39165

JSON object : View

Products Affected

No product.

CWE

CWE-94

Improper Control of Generation of Code ('Code Injection')

6.8 /10