{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "In OkayCMS through 2.3.4, an unauthenticated attacker can achieve remote code execution by injecting a malicious PHP object via a crafted cookie. This could happen at two places: first in view/ProductsView.php using the cookie price_filter, and second in api/Comparison.php via the cookie comparison."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-12-07T01:06:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.ait.ac.at/ait-sa-20191129-01-unauthenticated-remote-code-execution-okaycms"}, {"name": "20191206 [AIT-SA-20191129-01] CVE-2019-16885: Unauthenticated remote code execution in OkayCMS", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://seclists.org/fulldisclosure/2019/Dec/15"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.com/files/155583/OkayCMS-2.3.4-Remote-Code-Execution.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2019-16885", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "In OkayCMS through 2.3.4, an unauthenticated attacker can achieve remote code execution by injecting a malicious PHP object via a crafted cookie. This could happen at two places: first in view/ProductsView.php using the cookie price_filter, and second in api/Comparison.php via the cookie comparison."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://www.ait.ac.at/ait-sa-20191129-01-unauthenticated-remote-code-execution-okaycms", "refsource": "MISC", "url": "https://www.ait.ac.at/ait-sa-20191129-01-unauthenticated-remote-code-execution-okaycms"}, {"name": "20191206 [AIT-SA-20191129-01] CVE-2019-16885: Unauthenticated remote code execution in OkayCMS", "refsource": "FULLDISC", "url": "http://seclists.org/fulldisclosure/2019/Dec/15"}, {"name": "http://packetstormsecurity.com/files/155583/OkayCMS-2.3.4-Remote-Code-Execution.html", "refsource": "MISC", "url": "http://packetstormsecurity.com/files/155583/OkayCMS-2.3.4-Remote-Code-Execution.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T01:24:48.358Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.ait.ac.at/ait-sa-20191129-01-unauthenticated-remote-code-execution-okaycms"}, {"name": "20191206 [AIT-SA-20191129-01] CVE-2019-16885: Unauthenticated remote code execution in OkayCMS", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://seclists.org/fulldisclosure/2019/Dec/15"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://packetstormsecurity.com/files/155583/OkayCMS-2.3.4-Remote-Code-Execution.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2019-16885", "datePublished": "2019-12-03T19:50:21", "dateReserved": "2019-09-25T00:00:00", "dateUpdated": "2024-08-05T01:24:48.358Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:okay-cms:okaycms:*:*:*:*:*:*:*:*", "matchCriteriaId": "501DE749-B649-4313-B504-9C64DCDE4382", "versionEndIncluding": "2.3.4", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "In OkayCMS through 2.3.4, an unauthenticated attacker can achieve remote code execution by injecting a malicious PHP object via a crafted cookie. This could happen at two places: first in view/ProductsView.php using the cookie price_filter, and second in api/Comparison.php via the cookie comparison."}, {"lang": "es", "value": "En OkayCMS versiones hasta 2.3.4, un atacante no autenticado puede lograr una ejecuci\u00f3n de c\u00f3digo remota al inyectar un objeto PHP malicioso por medio de una cookie creada. Esto podr\u00eda suceder en dos lugares: primero en el archivo view/ProductsView.php usando la cookie price_filter, y segundo en el archivo api/Comparison.php por medio de la cookie comparison."}], "id": "CVE-2019-16885", "lastModified": "2024-11-21T04:31:16.507", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "[email protected]", "type": "Primary"}]}, "published": "2019-12-03T20:15:11.077", "references": [{"source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"], "url": "http://packetstormsecurity.com/files/155583/OkayCMS-2.3.4-Remote-Code-Execution.html"}, {"source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"], "url": "http://seclists.org/fulldisclosure/2019/Dec/15"}, {"source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"], "url": "https://www.ait.ac.at/ait-sa-20191129-01-unauthenticated-remote-code-execution-okaycms"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "http://packetstormsecurity.com/files/155583/OkayCMS-2.3.4-Remote-Code-Execution.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "http://seclists.org/fulldisclosure/2019/Dec/15"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://www.ait.ac.at/ait-sa-20191129-01-unauthenticated-remote-code-execution-okaycms"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "[email protected]", "type": "Primary"}]}

{}