Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Add 'Horde CSV import arbitrary PHP code execution' (CVE-2020-8518) #13082
This adds a module for the vulnerability in the subject. Follows an excerpt from the documentation.
The Horde project comprises several standalone applications and libraries, the Horde Groupware Webmail Edition suite (tested version 5.2.22) bundles several of them by default, among those, Data (Horde Data API) is a library used to manage data import/export in several formats, e.g., CSV, iCalendar, vCard, etc. This library up to version 2.1.4 (included) is vulnerable to PHP code injection.
Find more information in the original advisory.
Downgrade the Horde Data API package if needed:
This is my first MSF module submission, I apologize if something's wrong or missing.
Had a few issues getting the software installed, but finally got to test:
I also changed a few things: randomized the uploaded file, added a vprint_status statement, and removed the threading part. I haven't had any issues testing, but we can add that back if it is necessary for something I'm not seeing.
An exploit module is available for the Horde Data API that gets bundled with software such as Horde Groupware Webmail Edition Suite. The Horde Data API before and including