icecms <=3.4.7 has a File Upload vulnerability in FileUtils.java,uploadFile.
The vulnerability classified as CWE-434 (Unrestricted Upload of File with Dangerous Type) consists of the lack of proper validation of the type and content of the uploaded file in the uploadFile method of the FileUtils.java class. An attacker can upload an executable file (e.g., webshell) without requiring authentication. After loading the malicious file on the server, it is possible to execute it and perform arbitrary commands in the application context.
An attacker can gain full control over the server — read, modify and delete data, as well as execute arbitrary system commands (RCE). Due to the lack of authentication requirements, the vulnerability is particularly dangerous in internet-exposed environments.
Patches available from the vendor should be applied according to references. Until updates are deployed, it is recommended to restrict access to file upload functionality at the firewall or reverse proxy level and monitor the upload directory for suspicious executable files.
Thecosy IceCMS in versions 3.4.7 and earlier
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HThecosy Icecms
APPThecosy≤ 3.4.7
Related vulnerabilities
IceCMS: zakodowany na stałe klucz JWT umożliwia fałszowanie tokenów
An issue in Thecosy IceCMS v.1.0.0 allows a remote attacker to gain privileges via the Id and key parameters i...
An access control issue in the component /api/squareComment/DelectSquareById of iceCMS v2.2.0 allows unauthent...
An access control issue in the component /square/getAllSquare/circle of iceCMS v2.2.0 allows unauthenticated a...
Incorrect access control in IceCMS v3.4.7 and before allows attackers to authenticate by entering any arbitrar...