CRITICAL🇵🇱 Wersja polska

CVE-2011-10019

CVSS 10.0v4.0pub. 2025-08-13upd. 2025-09-24

Spreecommerce versions prior to 0.60.2 contains a remote command execution vulnerability in its search functionality. The application fails to properly sanitize input passed via the search[send][] parameter, which is dynamically invoked using Ruby’s send method. This allows attackers to execute arbitrary shell commands on the server without authentication.

🤖 AI Analysis
How it works

The application does not properly sanitize input data passed through the search[send][] parameter. The value of this parameter is dynamically invoked using Ruby's send method, which allows an attacker to specify the name of any method or command to execute. The lack of input validation and filtering enables direct execution of system commands on the server without requiring any privileges.

Impact

An attacker can execute arbitrary shell commands on the server without authentication, leading to complete system compromise, data breach, and potential lateral movement within the internal network.

Mitigation & patch

Spreecommerce Spree should be updated to version 0.60.2 or newer, in which the vulnerability has been removed. According to the references, patch details are available in the official producer blog and in the project repository.

Who is affected

Spreecommerce Spree in versions earlier than 0.60.2

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Spreecommerce Spree

    APP
    Spreecommerce
    < 0.60.2
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2011-10026CRITICAL9.3PL ✓ten sam produkt

RCE via command injection w API wyszukiwania Spreecommerce Spree

CVE-2026-25758HIGH7.7ten sam produkt

Spree is an open source e-commerce solution built with Ruby on Rails. A critical IDOR vulnerability exists in ...

CVE-2026-25757HIGH7.7ten sam produkt

Spree is an open source e-commerce solution built with Ruby on Rails. Prior to versions 5.0.8, 5.1.10, 5.2.7, ...

CVE-2026-22589HIGH7.5ten sam produkt

Spree is an open source e-commerce solution built with Ruby on Rails. Prior to versions 4.10.2, 5.0.7, 5.1.9, ...

CVE-2020-26223HIGH7.7ten sam produkt

Spree is a complete open source e-commerce solution built with Ruby on Rails. In Spree from version 3.7 and be...