Exploit
CVE-2024-9975

Unrestricted Upload of File with Dangerous Type (CWE-434)

Published: Oct 15, 2024 / Updated: 35d ago

010
CVSS 5.3EPSS 0.05%Medium
CVE info copied to clipboard

Summary

A critical vulnerability has been identified in SourceCodester Drag and Drop Image Upload version 1.0. The vulnerability affects the /upload.php file and allows for unrestricted file upload. This can be exploited remotely and requires low privileges with no user interaction.

Impact

This vulnerability could allow an attacker to upload malicious files to the server, potentially leading to remote code execution (RCE). The impact is severe, with high potential for compromising the confidentiality, integrity, and availability of the affected system. An attacker could potentially gain unauthorized access, manipulate or delete data, and disrupt system operations.

Exploitation

One proof-of-concept exploit is available on github.com. There is no evidence of proof of exploitation at the moment.

Patch

As of the current information, there is no mention of an available patch for this vulnerability. Users of SourceCodester Drag and Drop Image Upload 1.0 should be on high alert and consider alternative mitigation strategies until a patch is released.

Mitigation

Given the critical nature of this vulnerability and the lack of a patch, immediate mitigation steps are crucial: 1. Disable or restrict access to the /upload.php file if possible. 2. Implement strict file type and size restrictions on all file uploads. 3. Use a web application firewall (WAF) to filter potentially malicious uploads. 4. Monitor system logs for any suspicious file upload activities. 5. Consider temporarily disabling the Drag and Drop Image Upload functionality if it's not business-critical. 6. Keep the system isolated from critical network segments to limit potential damage. 7. Regularly check for updates from SourceCodester for a security patch. 8. If feasible, consider migrating to a more secure alternative solution.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Timeline

First Article

Feedly found the first article mentioning CVE-2024-9975. See article

Oct 15, 2024 at 11:11 AM / Vulners.com RSS Feed
CVSS Estimate

Feedly estimated the CVSS score as HIGH

Oct 15, 2024 at 11:11 AM
CVE Assignment

NVD published the first details for CVE-2024-9975

Oct 15, 2024 at 11:15 AM
CVSS

A CVSS base score of 6.3 has been assigned.

Oct 15, 2024 at 11:20 AM / nvd
EPSS

EPSS Score was set to: 0.05% (Percentile: 16.4%)

Oct 16, 2024 at 11:00 AM
CVSS

A CVSS base score of 8.8 has been assigned.

Oct 16, 2024 at 1:45 PM / nvd
Proof of Concept (PoC) Released

A proof of concept exploit has been released

Oct 16, 2024 at 3:10 PM
Static CVE Timeline Graph

Affected Systems

Rems/drag_and_drop_image_upload
+null more

Exploits

https://github.com/JunMing27/CVE/blob/main/SourceCodester%20-%20Arbitrary%20File%20Upload%20vulnerability%20leads%20to%20RCE%20in%20Drag%20and%20Drop%20Image%20Upload%20without%20Refresh%20Reload%20Using%20PHP%20and%20Ajax.md
+null more

Links to Mitre Att&cks

T1574.010: Services File Permissions Weakness
+null more

Attack Patterns

CAPEC-1: Accessing Functionality Not Properly Constrained by ACLs
+null more

News

CVE-2024-9975 Exploit
CVE Id : CVE-2024-9975 Published Date: 2024-10-16T13:44:00+00:00 A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. inTheWild added a link to an exploit: https://github.com/JunMing27/CVE/blob/main/SourceCodester%20-%20Arbitrary%20File%20Upload%20vulnerability%20leads%20to%20RCE%20in%20Drag%20and%20Drop%20Image%20Upload%20without%20Refresh%20Reload%20Using%20PHP%20and%20Ajax.md
NA - CVE-2024-9975 - A vulnerability was found in SourceCodester...
A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The...
Critical Vulnerability Found in SourceCodester's Drag and Drop Image Upload Script
Sourcecodester - MEDIUM - CVE-2024-9975 A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVE-2024-9975 - SourceCodester Drag and Drop Image Upload Unrestricted File Upload Vulnerability
CVE ID : CVE-2024-9975 Published : Oct. 15, 2024, 11:15 a.m. 15 minutes ago Description : A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulation leads to unrestricted upload.
CVE-2024-9975
A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be...
See 3 more articles and social media posts

CVSS V3.1

Attack Vector:Network
Attack Complexity:Low
Privileges Required:Low
User Interaction:None
Scope:Unchanged
Confidentiality:High
Integrity:High
Availability Impact:High

Categories

Be the first to know about critical vulnerabilities

Collect, analyze, and share vulnerability reports faster using AI