How severe is CVE-2021-22968?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.2 out of 10.

What type of vulnerability is CVE-2021-22968?

This is classified as CWE-98, which is a common weakness in software security.

CVE-2021-22968 - HIGH Severity | CVSS 7.2

Vulnerability Description

A bypass of adding remote files in Concrete CMS (previously concrete5) File Manager leads to remote code execution in Concrete CMS (concrete5) versions 8.5.6 and below.The external file upload feature stages files in the public directory even if they have disallowed file extensions. They are stored in a directory with a random name, but it's possible to stall the uploads and brute force the directory name. You have to be an admin with the ability to upload files, but this bug gives you the ability to upload restricted file types and execute them depending on server configuration.To fix this, a check for allowed file extensions was added before downloading files to a tmp directory.Concrete CMS Security Team gave this a CVSS v3.1 score of 5.4 AV:N/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:NThis fix is also in Concrete version 9.0.0

Related Vulnerabilities

CVE-2023-2551

HIGH

CVSS:7.2(High)

PHP Remote File Inclusion in GitHub repository unilogies/bumsys prior to 2.1.1.

CWE-982023

CVE-2024-31459

HIGH

CVSS:7.2(High)

Cacti provides an operational monitoring and fault management framework. Prior to version 1.2.27, there is a file inclusion issue in the `lib/plugin.php` file. Combined with SQL injection vulnerabilit...

CWE-982024

CVE-2024-35650

HIGH

CVSS:7.2(High)

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Melapress MelaPress Login Security allows PHP Remote File Inclusion.This issue ...

CWE-982024

CVE-2024-8392

HIGH

CVSS:7.2(High)

The WordPress Post Grid Layouts with Pagination – Sogrid plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.5.2 via the 'tab' parameter. This makes it p...

CWE-982024

CVE-2024-51319

HIGH

CVSS:7.3(High)

A local file include vulnerability in the /servlet/Report of Zucchetti Ad Hoc Infinity 2.4 allows an authenticated attacker to achieve Remote Code Execution by uploading a jsp web/reverse shell throug...

CWE-982024

CVE-2016-6565

HIGH

CVSS:7.5(High)

The Imagely NextGen Gallery plugin for Wordpress prior to version 2.1.57 does not properly validate user input in the cssfile parameter of a HTTP POST request, which may allow an authenticated user to...

CWE-982016