{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The setName function in filesystem/File.php in SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1 allows remote authenticated users with CMS author privileges to execute arbitrary PHP code by changing the extension of an uploaded file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2012-08-26T18:00:00Z", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"name": "[oss-security] 20120501 Re: CVE-request: SilverStripe before 2.4.4", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2012/05/01/3"}, {"tags": ["x_refsource_MISC"], "url": "http://open.silverstripe.org/ticket/5693"}, {"name": "[oss-security] 20120430 CVE-request: SilverStripe before 2.4.4", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2012/04/30/1"}, {"name": "[oss-security] 20120430 Re: CVE-request: SilverStripe before 2.4.4", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2012/04/30/3"}, {"tags": ["x_refsource_MISC"], "url": "http://dl.packetstormsecurity.net/1006-exploits/silverstripe-shell.txt"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.4.1"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://open.silverstripe.org/changeset/107273"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.3.8"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2010-5091", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The setName function in filesystem/File.php in SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1 allows remote authenticated users with CMS author privileges to execute arbitrary PHP code by changing the extension of an uploaded file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[oss-security] 20120501 Re: CVE-request: SilverStripe before 2.4.4", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2012/05/01/3"}, {"name": "http://open.silverstripe.org/ticket/5693", "refsource": "MISC", "url": "http://open.silverstripe.org/ticket/5693"}, {"name": "[oss-security] 20120430 CVE-request: SilverStripe before 2.4.4", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2012/04/30/1"}, {"name": "[oss-security] 20120430 Re: CVE-request: SilverStripe before 2.4.4", "refsource": "MLIST", "url": "http://www.openwall.com/lists/oss-security/2012/04/30/3"}, {"name": "http://dl.packetstormsecurity.net/1006-exploits/silverstripe-shell.txt", "refsource": "MISC", "url": "http://dl.packetstormsecurity.net/1006-exploits/silverstripe-shell.txt"}, {"name": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.4.1", "refsource": "CONFIRM", "url": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.4.1"}, {"name": "http://open.silverstripe.org/changeset/107273", "refsource": "CONFIRM", "url": "http://open.silverstripe.org/changeset/107273"}, {"name": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.3.8", "refsource": "CONFIRM", "url": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.3.8"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T04:09:38.807Z"}, "title": "CVE Program Container", "references": [{"name": "[oss-security] 20120501 Re: CVE-request: SilverStripe before 2.4.4", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2012/05/01/3"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://open.silverstripe.org/ticket/5693"}, {"name": "[oss-security] 20120430 CVE-request: SilverStripe before 2.4.4", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2012/04/30/1"}, {"name": "[oss-security] 20120430 Re: CVE-request: SilverStripe before 2.4.4", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://www.openwall.com/lists/oss-security/2012/04/30/3"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://dl.packetstormsecurity.net/1006-exploits/silverstripe-shell.txt"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.4.1"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://open.silverstripe.org/changeset/107273"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.3.8"}]}]}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2010-5091", "datePublished": "2012-08-26T18:00:00Z", "dateReserved": "2012-04-30T00:00:00Z", "dateUpdated": "2024-09-16T23:20:47.546Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "24734325-97DA-4B2C-B192-3F4B83CCF0C0", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc1:*:*:*:*:*:*", "matchCriteriaId": "D875C510-39F2-4726-9DBD-3D95A5CB3D5D", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc2:*:*:*:*:*:*", "matchCriteriaId": "BE8C544D-E233-488D-B768-8C077BB79338", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.0:rc3:*:*:*:*:*:*", "matchCriteriaId": "26E1807F-7DEB-4519-95B9-4FA647C7D477", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "609BEA7D-81F2-4DFE-AB2A-157A6B7DE348", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.1:rc1:*:*:*:*:*:*", "matchCriteriaId": "FAB67F4E-0E56-4597-BD9B-90D07685D7F7", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.1:rc2:*:*:*:*:*:*", "matchCriteriaId": "AA541F02-F78A-4E43-8212-690810311187", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "7856E216-D7B7-48A5-9D20-9F1973DA005D", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "DF4FF5F5-6565-4EA1-8099-2C4C964DA006", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.4:*:*:*:*:*:*:*", "matchCriteriaId": "7E0AD691-1BA2-4D8B-935C-B2C7A31BD5ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.5:*:*:*:*:*:*:*", "matchCriteriaId": "2AD30632-B31E-4425-827E-205351ABECE6", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.6:*:*:*:*:*:*:*", "matchCriteriaId": "706247B5-ACA3-4863-BDBC-B42EA95E1476", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.3.7:*:*:*:*:*:*:*", "matchCriteriaId": "87690027-1CF7-477E-91FE-87E6F77B2988", "vulnerable": true}, {"criteria": "cpe:2.3:a:silverstripe:silverstripe:2.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "F5BCB4DE-0432-4378-8A31-81208794EBD7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The setName function in filesystem/File.php in SilverStripe 2.3.x before 2.3.8 and 2.4.x before 2.4.1 allows remote authenticated users with CMS author privileges to execute arbitrary PHP code by changing the extension of an uploaded file."}, {"lang": "es", "value": "La funci\u00f3n setName en filesystem/File.php in SilverStripe v2.3.x anterior a v2.3.8 y v2.4.x anterior a v2.4.1 permite a usuarios remotos autenticados con privilegios de autor del CMS ejecutar c\u00f3digo PHP arbitrario cambiando la extensi\u00f3n de un fichero subido."}], "id": "CVE-2010-5091", "lastModified": "2012-08-27T04:00:00.000", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "PARTIAL", "baseScore": 6.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-08-26T18:55:01.310", "references": [{"source": "secalert@redhat.com", "tags": ["Exploit"], "url": "http://dl.packetstormsecurity.net/1006-exploits/silverstripe-shell.txt"}, {"source": "secalert@redhat.com", "url": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.3.8"}, {"source": "secalert@redhat.com", "url": "http://doc.silverstripe.org/sapphire/en/trunk/changelogs//2.4.1"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "http://open.silverstripe.org/changeset/107273"}, {"source": "secalert@redhat.com", "url": "http://open.silverstripe.org/ticket/5693"}, {"source": "secalert@redhat.com", "url": "http://www.openwall.com/lists/oss-security/2012/04/30/1"}, {"source": "secalert@redhat.com", "url": "http://www.openwall.com/lists/oss-security/2012/04/30/3"}, {"source": "secalert@redhat.com", "url": "http://www.openwall.com/lists/oss-security/2012/05/01/3"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}