CVE-2014-2664
high
CVSS v3
8.8
CVSS v2
6.5
VIR risk
8.8
Description
Unrestricted file upload vulnerability in the ProfileController::actionUploadPhoto method in protected/controllers/ProfileController.php in X2Engine X2CRM before 4.0 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified directory.
Predictions
Exploit likelihood
92%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No vendor mitigations ingested yet for this CVE. The mitigation-content worker queues fetches as references arrive — check back in a few minutes, or see the references list below.
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| x2engine | x2crm | {"endIncluding":"3.7.5"} | |
References
- http://karmainsecurity.com/KIS-2014-04
- http://secunia.com/advisories/57315
- http://www.securityfocus.com/bid/66506/discuss
- https://exchange.xforce.ibmcloud.com/vulnerabilities/92169
- https://secuniaresearch.flexerasoftware.com//secunia_research/2014-4
- http://karmainsecurity.com/KIS-2014-04
- http://secunia.com/advisories/57315
- http://www.securityfocus.com/bid/66506/discuss
- https://exchange.xforce.ibmcloud.com/vulnerabilities/92169
- https://secuniaresearch.flexerasoftware.com//secunia_research/2014-4
CWEs
CWE-434
Verify integrity in audit chain (admin only). AS-IS.