Vulnerability Description
Unrestricted file upload vulnerability in the ProfileController::actionUploadPhoto method in protected/controllers/ProfileController.php in X2Engine X2CRM before 4.0 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified directory.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| X2Engine | X2Crm | <= 3.7.5 |
Related Weaknesses (CWE)
References
- http://karmainsecurity.com/KIS-2014-04Third Party Advisory
- http://secunia.com/advisories/57315Third Party Advisory
- http://www.securityfocus.com/bid/66506/discussThird Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/92169Third Party AdvisoryVDB Entry
- https://secuniaresearch.flexerasoftware.com//secunia_research/2014-4Third Party Advisory
- http://karmainsecurity.com/KIS-2014-04Third Party Advisory
- http://secunia.com/advisories/57315Third Party Advisory
- http://www.securityfocus.com/bid/66506/discussThird Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/92169Third Party AdvisoryVDB Entry
- https://secuniaresearch.flexerasoftware.com//secunia_research/2014-4Third Party Advisory
FAQ
What is CVE-2014-2664?
CVE-2014-2664 is a vulnerability with a CVSS score of 8.8 (HIGH). Unrestricted file upload vulnerability in the ProfileController::actionUploadPhoto method in protected/controllers/ProfileController.php in X2Engine X2CRM before 4.0 allows remote attackers to execute...
How severe is CVE-2014-2664?
CVE-2014-2664 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-2664?
Check the references section above for vendor advisories and patch information. Affected products include: X2Engine X2Crm.