CVE-2020-14067 — CRITICAL (9.8)

Vulnerability Description

The install_from_hash functionality in Navigate CMS 2.9 does not consider the .phtml extension when examining files within a ZIP archive that may contain PHP code, in check_upload in lib/packages/extensions/extension.class.php and lib/packages/themes/theme.class.php.

CVSS Score

9.8

CRITICAL

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Naviwebs	Navigatecms	2.9

Related Weaknesses (CWE)

CWE-434

References

https://github.com/NavigateCMS/Navigate-CMS/commit/f1f47126b359d73a2635306ae46d8PatchThird Party Advisory
https://github.com/NavigateCMS/Navigate-CMS/commit/f1f47126b359d73a2635306ae46d8PatchThird Party Advisory

FAQ

What is CVE-2020-14067?

CVE-2020-14067 is a vulnerability with a CVSS score of 9.8 (CRITICAL). The install_from_hash functionality in Navigate CMS 2.9 does not consider the .phtml extension when examining files within a ZIP archive that may contain PHP code, in check_upload in lib/packages/exte...

How severe is CVE-2020-14067?

CVE-2020-14067 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.

Is there a patch for CVE-2020-14067?

Check the references section above for vendor advisories and patch information. Affected products include: Naviwebs Navigatecms.