Primary

Context

Ovidentia File Upload Vulnerability Leading to Remote Code Execution

Vulnerability

A file upload vulnerability has been identified in Ovidentia version 8.3. The issue arises because the application does not properly restrict the types of files that can be uploaded. Users can exploit this by uploading a .png file containing PHP code, renaming it to a .php extension, and then accessing it through a specific URI. This flaw allows for remote code execution on the server.

Impact

Exploitation of this vulnerability allows for remote code execution on the server where Ovidentia is hosted.

Reproduction

To reproduce this vulnerability, upload a .png file embedded with PHP code via the image upload feature. After the upload, rename the file to have a .php extension. The file can then be accessed at 'images/common/' followed by the filename, enabling the execution of the PHP code on the server.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

10.0

exploitability

6.8

remediation

0.0

relevance

0.0

threat

6.6

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

10.0

exploitability

6.8

remediation

0.0

relevance

0.0

threat

6.6

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Ovidentia File Upload Vulnerability Leading to Remote Code Execution

Vulnerability

Impact

Reproduction

Affected Products

Ovidentia

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating