CVE-2024-8880

A vulnerability classified as critical has been found in playSMS 1.4.4/1.4.5/1.4.6/1.4.7. Affected is an unknown function of the file /playsms/index.php?app=main&inc=core_auth&route=forgot&op=forgot of the component Template Handler. The manipulation of the argument username/email/captcha leads to code injection. It is possible to launch the attack remotely. The complexity of an attack is rather high. The exploitability is told to be difficult. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component. The project maintainer was informed early about the issue. Investigation shows that playSMS up to 1.4.3 contained a fix but later versions re-introduced the flaw. As long as the latest version of the playsms/tpl package is used, the software is not affected. Version >=1.4.4 shall fix this issue for sure.
References
Link Resource
https://vuldb.com/?ctiid.277524 Permissions Required
https://vuldb.com/?id.277524 Third Party Advisory
https://vuldb.com/?submit.406095 Exploit Third Party Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:playsms:playsms:1.4.4:*:*:*:*:*:*:*
cpe:2.3:a:playsms:playsms:1.4.5:*:*:*:*:*:*:*
cpe:2.3:a:playsms:playsms:1.4.6:*:*:*:*:*:*:*
cpe:2.3:a:playsms:playsms:1.4.7:*:*:*:*:*:*:*

History

20 Sep 2024, 16:41

Type Values Removed Values Added
First Time Playsms
Playsms playsms
References () https://vuldb.com/?ctiid.277524 - () https://vuldb.com/?ctiid.277524 - Permissions Required
References () https://vuldb.com/?id.277524 - () https://vuldb.com/?id.277524 - Third Party Advisory
References () https://vuldb.com/?submit.406095 - () https://vuldb.com/?submit.406095 - Exploit, Third Party Advisory
CVSS v2 : 5.1
v3 : 5.6
v2 : 5.1
v3 : 9.8
CPE cpe:2.3:a:playsms:playsms:1.4.4:*:*:*:*:*:*:*
cpe:2.3:a:playsms:playsms:1.4.6:*:*:*:*:*:*:*
cpe:2.3:a:playsms:playsms:1.4.5:*:*:*:*:*:*:*
cpe:2.3:a:playsms:playsms:1.4.7:*:*:*:*:*:*:*

16 Sep 2024, 15:30

Type Values Removed Values Added
Summary
  • (es) Se ha encontrado una vulnerabilidad clasificada como crítica en playSMS 1.4.4/1.4.5/1.4.6/1.4.7. Se ve afectada una función desconocida del archivo /playsms/index.php?app=main&inc=core_auth&route=forgot&op=forgot del componente Template Handler. La manipulación del argumento username/email/captcha provoca la inyección de código. Es posible lanzar el ataque de forma remota. La complejidad de un ataque es bastante alta. Se dice que la explotabilidad es difícil. El exploit se ha divulgado al público y puede usarse. Se recomienda actualizar el componente afectado. El responsable del proyecto fue informado con antelación sobre el problema. La investigación muestra que playSMS hasta la versión 1.4.3 contenía una solución, pero las versiones posteriores volvieron a introducir la falla. Mientras se utilice la última versión del paquete playsms/tpl, el software no se ve afectado. La versión >=1.4.4 solucionará este problema con seguridad.

16 Sep 2024, 01:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-16 01:15

Updated : 2024-09-20 16:41


NVD link : CVE-2024-8880

Mitre link : CVE-2024-8880

CVE.ORG link : CVE-2024-8880


JSON object : View

Products Affected

playsms

  • playsms
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')