What the vulnerability does
01Description
The Joomla extension Phoca Downloads is vulnerable to an authenticated arbitrary file upload that allows registered users uploading executable files and leads to full RCE.
CVSS base score
CVSS vector
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
What the vulnerability does
The Joomla extension Phoca Downloads is vulnerable to an authenticated arbitrary file upload that allows registered users uploading executable files and leads to full RCE.
Explanation of Vulnerability in Simple Terms
The Phoca Download extension for Joomla contains an unrestricted file upload vulnerability. An authenticated user with low privileges can upload arbitrary files to the server, potentially including executable code. This allows an attacker to run their own code on the site and compromise the entire Joomla installation. The vulnerability affects versions 1.0-6.1.2.
What an attacker can do
Upload arbitrary files, including executable code, to the server.
Potential impact on your site
An authenticated attacker can run code on your site and take full control of your Joomla installation.
Conditions required to exploit
Attacker must have a low-privilege Joomla user account.
Key dates
External resources
Related vulnerabilities