Primary

Context

Blackcat CMS Remote Code Execution Vulnerability

Vulnerability

A remote code execution vulnerability exists in Blackcat CMS version 1.4. This issue allows authenticated administrators to upload malicious PHP files via the jQuery plugin manager. Exploitation involves uploading a zip file containing a PHP shell script, which can then be executed by accessing the uploaded plugin's PHP file with a 'code' parameter.

Impact

Exploitation of this vulnerability allows for remote code execution on the server where Blackcat CMS is hosted.

Reproduction

To reproduce this vulnerability, log into an admin account and navigate to the jQuery plugin manager within the admin tools. Upload a zip file containing a PHP script designed to execute system commands. After the file is uploaded, access the PHP script through the web server, using a 'code' parameter to execute the embedded commands.

Added: Dec 15, 2025, 9:39 PM

Updated: Dec 15, 2025, 10:18 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

10.0

exploitability

6.3

remediation

0.0

relevance

1.4

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

10.0

exploitability

6.3

remediation

0.0

relevance

1.4

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Blackcat CMS Remote Code Execution Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

Blackcat CMS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating