Django REST framework

Vulnerability Instance

Lookup for vulnerabilities affecting packages.

Vulnerability_idVCID-r136-w6fm-t7fc
Summary
Unrestricted Upload of File with Dangerous Type
/panel/uploads in Subrion CMS 4.2.1 allows remote attackers to execute arbitrary PHP code via a .pht or .phar file, because the .htaccess file omits these.
Aliases
0
alias CVE-2018-19422
1
alias GHSA-73xj-v6gc-g5p5
Fixed_packages
Affected_packages
0
url pkg:composer/intelliants/subrion@4.2.1
purl pkg:composer/intelliants/subrion@4.2.1
is_vulnerable true
affected_by_vulnerabilities
0
vulnerability VCID-3bwe-5b6b-a7e2
1
vulnerability VCID-3h1n-dvmt-5qhz
2
vulnerability VCID-3hbd-spm4-2kaz
3
vulnerability VCID-44kx-4nnh-4bdf
4
vulnerability VCID-51fa-htgd-pkd7
5
vulnerability VCID-7yej-24pb-d3dm
6
vulnerability VCID-8g7b-wfgz-77f1
7
vulnerability VCID-8gvw-wym4-qufa
8
vulnerability VCID-8n55-g9s6-5qbz
9
vulnerability VCID-94z6-as1s-pkem
10
vulnerability VCID-9fac-c1gc-jbft
11
vulnerability VCID-9hkc-qw4n-t7at
12
vulnerability VCID-abws-hvpw-myfy
13
vulnerability VCID-by36-7n26-g7cc
14
vulnerability VCID-cjhs-mtaa-7kdb
15
vulnerability VCID-ekj6-hqpd-5ybq
16
vulnerability VCID-f7sw-fp56-hudc
17
vulnerability VCID-fc5n-dcez-93fn
18
vulnerability VCID-gmvv-sz8z-ebgp
19
vulnerability VCID-hay9-1wuc-s3b1
20
vulnerability VCID-j2eh-myxv-abbm
21
vulnerability VCID-j8ge-mhfk-ebd9
22
vulnerability VCID-jqzh-mw8h-23bv
23
vulnerability VCID-ng2d-pg2s-2fac
24
vulnerability VCID-ngpm-xvdu-sybs
25
vulnerability VCID-q9uf-qqfn-n7gr
26
vulnerability VCID-qwxk-wzqe-7kdp
27
vulnerability VCID-r136-w6fm-t7fc
28
vulnerability VCID-s1ez-jft2-tydn
29
vulnerability VCID-sc65-ev58-2bbk
30
vulnerability VCID-sqbf-5a82-yucu
31
vulnerability VCID-vzeg-42da-euej
32
vulnerability VCID-ydhn-xpam-jqgm
resource_url http://public2.vulnerablecode.io/packages/pkg:composer/intelliants/subrion@4.2.1
References
0
reference_url http://packetstormsecurity.com/files/162591/Subrion-CMS-4.2.1-Shell-Upload.html
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://packetstormsecurity.com/files/162591/Subrion-CMS-4.2.1-Shell-Upload.html
1
reference_url http://packetstormsecurity.com/files/173998/Intelliants-Subrion-CMS-4.2.1-Remote-Code-Execution.html
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url http://packetstormsecurity.com/files/173998/Intelliants-Subrion-CMS-4.2.1-Remote-Code-Execution.html
2
reference_url https://api.first.org/data/v1/epss?cve=CVE-2018-19422
reference_id
reference_type
scores
0
value 0.84263
scoring_system epss
scoring_elements 0.99328
published_at 2026-05-30T12:55:00Z
url https://api.first.org/data/v1/epss?cve=CVE-2018-19422
3
reference_url https://github.com/intelliants/subrion/commit/74359bcfaea424edda6d782a8ac25397c55972ab
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/intelliants/subrion/commit/74359bcfaea424edda6d782a8ac25397c55972ab
4
reference_url https://github.com/intelliants/subrion/issues/801
reference_id
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://github.com/intelliants/subrion/issues/801
5
reference_url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/49876.py
reference_id CVE-2018-19422
reference_type exploit
scores
url https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/php/webapps/49876.py
6
reference_url https://nvd.nist.gov/vuln/detail/CVE-2018-19422
reference_id CVE-2018-19422
reference_type
scores
0
value 7.2
scoring_system cvssv3.1
scoring_elements CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
1
value HIGH
scoring_system generic_textual
scoring_elements
url https://nvd.nist.gov/vuln/detail/CVE-2018-19422
7
reference_url https://github.com/advisories/GHSA-73xj-v6gc-g5p5
reference_id GHSA-73xj-v6gc-g5p5
reference_type
scores
0
value HIGH
scoring_system cvssv3.1_qr
scoring_elements
url https://github.com/advisories/GHSA-73xj-v6gc-g5p5
Weaknesses
0
cwe_id 1035
name OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.
1
cwe_id 434
name Unrestricted Upload of File with Dangerous Type
description The product allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment.
2
cwe_id 78
name Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')
description The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.
3
cwe_id 937
name OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.
Exploits
0
date_added null
description 
This module exploits an authenticated file upload vulnerability in
          Subrion CMS versions 4.2.1 and lower. The vulnerability is caused by
          the .htaccess file not preventing the execution of .pht, .phar, and
          .xhtml files. Files with these extensions are not included in the
          .htaccess blacklist, hence these files can be uploaded and executed
          to achieve remote code execution. In this module, a .phar file with
          a randomized name is uploaded and executed to receive a Meterpreter
          session on the target, then deletes itself afterwards.
required_action null
due_date null
notes 
Stability:
  - crash-safe
Reliability:
  - repeatable-session
SideEffects:
  - artifacts-on-disk
  - ioc-in-logs
known_ransomware_campaign_use false
source_date_published 2018-11-04
exploit_type null
platform PHP
source_date_updated null
data_source Metasploit
source_url https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/multi/http/subrion_cms_file_upload_rce.rb
1
date_added 2021-05-17
description Subrion CMS 4.2.1 - Arbitrary File Upload
required_action null
due_date null
notes null
known_ransomware_campaign_use false
source_date_published 2021-05-17
exploit_type webapps
platform php
source_date_updated 2021-10-29
data_source Exploit-DB
source_url
Severity_range_score7.0 - 8.9
Exploitability2.0
Weighted_severity8.0
Risk_score10.0
Resource_urlhttp://public2.vulnerablecode.io/vulnerabilities/VCID-r136-w6fm-t7fc