Vulnerability Description
Sruu.pl in Batflat 1.3.6 allows an authenticated user to perform code injection (and consequently Remote Code Execution) via the input fields of the Users tab. To exploit this, one must login to the administration panel and edit an arbitrary user's data (username, displayed name, etc.). NOTE: This vulnerability only affects products that are no longer supported by the maintainer
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Batflat | Batflat | 1.3.6 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/161457/Batflat-CMS-1.3.6-Remote-Code-ExecutExploitThird Party Advisory
- https://batflat.org/en/changelogRelease NotesVendor Advisory
- https://github.com/sruupl/batflat/issues/98ExploitThird Party Advisory
- https://secator.pl/index.php/2021/02/15/batflat-v-1-3-6-authenticated-remote-codExploitThird Party Advisory
- http://packetstormsecurity.com/files/161457/Batflat-CMS-1.3.6-Remote-Code-ExecutExploitThird Party Advisory
- https://batflat.org/en/changelogRelease NotesVendor Advisory
- https://github.com/sruupl/batflat/issues/98ExploitThird Party Advisory
- https://secator.pl/index.php/2021/02/15/batflat-v-1-3-6-authenticated-remote-codExploitThird Party Advisory
FAQ
What is CVE-2020-35734?
CVE-2020-35734 is a vulnerability with a CVSS score of 7.2 (HIGH). Sruu.pl in Batflat 1.3.6 allows an authenticated user to perform code injection (and consequently Remote Code Execution) via the input fields of the Users tab. To exploit this, one must login to the a...
How severe is CVE-2020-35734?
CVE-2020-35734 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-35734?
Check the references section above for vendor advisories and patch information. Affected products include: Batflat Batflat.