Primary

Context

e107 CMS Remote Code Execution Vulnerability

Vulnerability

Patched

A remote code execution vulnerability has been identified in e107 CMS version 2.3.0. This vulnerability allows authenticated users with theme installation permissions to execute arbitrary commands by uploading malicious theme files. Exploitation involves uploading a crafted theme package through the theme.php endpoint, which deploys a web shell in the e107_themes directory. The uploaded web shell can then be used to execute system commands via a specified script.

Impact

Exploitation of this vulnerability allows for remote code execution on the server where e107 CMS is hosted.

Reproduction

To reproduce this vulnerability, an authenticated user with theme installation permissions must upload a malicious theme package through the theme.php endpoint. The uploaded package should contain a web shell that can be accessed via the payload.php script, allowing for the execution of arbitrary system commands.

Remediation

Users are advised to upgrade to e107 CMS version 2.3.4, which addresses this vulnerability.

Added: May 10, 2026, 1:36 PM

Updated: May 10, 2026, 1:36 PM

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

7.5

exploitability

6.3

remediation

7.7

relevance

7.9

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

7.5

exploitability

6.3

remediation

7.7

relevance

7.9

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

e107 CMS Remote Code Execution Vulnerability

Vulnerability

Impact

Reproduction

Remediation

Affected Products

e107 CMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating