class.upload.php in verot.net omits .pht from the set of dangerous file extensions · CVE-2019-19634 · GitHub Advisory Database · GitHub

class.upload.php in verot.net omits .pht from the set of dangerous file extensions

Critical severity GitHub Reviewed Published Feb 28, 2020 to the GitHub Advisory Database • Updated Jan 9, 2023

Package

verot/class.upload.php (Composer)

Affected versions

<= 1.0.3

>= 2.0.0, <= 2.0.4

Patched versions

None

Description

class.upload.php in verot.net class.upload through 1.0.3 and 2.x through 2.0.4, as used in the K2 extension for Joomla! and other products, omits .pht from the set of dangerous file extensions, a similar issue to CVE-2019-19576.

References

Reviewed Feb 25, 2020

Published to the GitHub Advisory Database Feb 28, 2020

Last updated Jan 9, 2023

Severity

Critical

9.8

/ 10

CVSS base metrics

Attack vector

Network

Attack complexity

Low

Privileges required

None

User interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H