CMS Security Advisory: 5 CVEs including RCE, SQLi, and Info Disclosure

Critical Vulnerability Information Vulnerability Overview Security Advisory: 5 issues affecting CMS Release Date: May 30, 2023 Recommended Upgrade Versions: 2.3.17 or 3.3.5 Vulnerability Details 1. Path Traversal and Remote Code Execution (RCE) - Description: Authenticated users can upload specially crafted ZIP files, leading to malicious files being placed on the web server and enabling remote code execution - Affected Versions: 1.8.0 and later - Fixed Versions: 2.3.17 and 3.3.5 - CVE: CVE-2023-33177 2. SQL Injection - Description: Authenticated users can exploit SQL injection to retrieve sensitive information from the database - Affected Versions: 1.4.0 and later - Fixed Versions: 2.3.17 and 3.3.5 - CVE: CVE-2023-33178 3. SQL Injection - Description: Authenticated users can exploit SQL injection to retrieve sensitive information from the database - Affected Versions: 3.2.0 and later - Fixed Versions: 3.3.5 - CVE: CVE-2023-33179 4. SQL Injection - Description: Authenticated users can exploit SQL injection to retrieve sensitive information from the database - Affected Versions: 3.2.0 and later - Fixed Versions: 3.3.5 - CVE: CVE-2023-33180 5. Exposed Stack Traces - Description: Error messages disclose information related to server directory structure - Affected Versions: 3.0.0 and later - Fixed Versions: 3.3.5 - CVE: CVE-2023-33181 Additional Information Acknowledgments: Thank you to Noam Moshe from Claro ty Research - Team82 for responsibly disclosing these vulnerabilities and allowing time to release versions 2.3.17/3.3.5 Cloud Platform Configuration: Cloud platform configurations make exploitation of path traversal and RCE vulnerabilities more difficult, and possibly unfeasible

Goal Reached Thanks to every supporter — we hit 100%!

CMS Security Advisory: 5 CVEs including RCE, SQLi, and Info Disclosure