Vulnerability Details : CVE-2022-24248
Potential exploit
RiteCMS version 3.1.0 and below suffers from an arbitrary file deletion via path traversal vulnerability in Admin Panel. Exploiting the vulnerability allows an authenticated attacker to delete any file in the web root (along with any other file on the server that the PHP process user has the proper permissions to delete). Furthermore, an attacker might leverage the capability of arbitrary file deletion to circumvent certain web server security mechanisms such as deleting .htaccess file that would deactivate those security constraints.
Vulnerability category: Directory traversal
Products affected by CVE-2022-24248
- cpe:2.3:a:ritecms:ritecms:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2022-24248
0.78%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 73 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2022-24248
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
8.5
|
HIGH | AV:N/AC:L/Au:S/C:N/I:C/A:C |
8.0
|
9.2
|
NIST | |
6.5
|
MEDIUM | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H |
1.2
|
5.2
|
NIST |
CWE ids for CVE-2022-24248
-
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.Assigned by: nvd@nist.gov (Primary)
References for CVE-2022-24248
-
https://www.exploit-db.com/exploits/50615
RiteCMS 3.1.0 - Arbitrary File Deletion (Authenticated) - PHP webapps ExploitExploit;Third Party Advisory;VDB Entry
-
https://en.0day.today/exploit/description/37177
0day.today Agreement - 0day.today Exploit Database : vulnerability : 0day : new exploits : buy and sell private exploit : shellcode by 0day Today TeamExploit;Third Party Advisory
Jump to