Primary

Context

Webutler Remote Code Execution Vulnerability

Vulnerability

A remote code execution vulnerability exists in Webutler version 3.2, allowing authenticated administrators to upload PHP files that can execute system commands. Exploitation involves uploading a PHAR file containing embedded commands to the media browser, which can then be executed by accessing the uploaded file.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the server.

Reproduction

To reproduce this vulnerability, log in as an administrator and navigate to the media browser. Upload a PHAR file named 'poc.phar' containing a PHP payload that executes a system command, such as 'cat /etc/passwd'. After uploading, access the 'poc.phar' file to execute the embedded command.

Added: Dec 15, 2025, 9:44 PM

Updated: Dec 15, 2025, 10:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.1

remediation

0.0

relevance

1.5

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.1

remediation

0.0

relevance

1.5

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Webutler Remote Code Execution Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating