CVE-2022-23655 – Missing server signature validation in OctoberCMS
https://notcve.org/view.php?id=CVE-2022-23655
Octobercms is a self-hosted CMS platform based on the Laravel PHP Framework. Affected versions of OctoberCMS did not validate gateway server signatures. As a result non-authoritative gateway servers may be used to exfiltrate user private keys. Users are advised to upgrade their installations to build 474 or v1.1.10. The only known workaround is to manually apply the patch (e3b455ad587282f0fbcb7763c6d9c3d000ca1e6a) which adds server signature validation. • https://github.com/octobercms/october/commit/e3b455ad587282f0fbcb7763c6d9c3d000ca1e6a https://github.com/octobercms/october/security/advisories/GHSA-53m6-44rc-h2q5 • CWE-347: Improper Verification of Cryptographic Signature •
CVE-2022-21705 – Authenticated remote code execution in octobercms
https://notcve.org/view.php?id=CVE-2022-21705
Octobercms is a self-hosted CMS platform based on the Laravel PHP Framework. In affected versions user input was not properly sanitized before rendering. An authenticated user with the permissions to create, modify and delete website pages can exploit this vulnerability to bypass `cms.safe_mode` / `cms.enableSafeMode` in order to execute arbitrary code. This issue only affects admin panels that rely on safe mode and restricted permissions. To exploit this vulnerability, an attacker must first have access to the backend area. • https://github.com/octobercms/library/commit/c393c5ce9ca2c5acc3ed6c9bb0dab5ffd61965fe https://github.com/octobercms/october/security/advisories/GHSA-79jw-2f46-wv22 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVE-2021-32649 – Authenticated file write leads to remote code execution in october/system
https://notcve.org/view.php?id=CVE-2021-32649
October CMS is a self-hosted content management system (CMS) platform based on the Laravel PHP Framework. Prior to versions 1.0.473 and 1.1.6, an attacker with "create, modify and delete website pages" privileges in the backend is able to execute PHP code by running specially crafted Twig code in the template markup. The issue has been patched in Build 473 (v1.0.473) and v1.1.6. Those unable to upgrade may apply the patch to their installation manually as a workaround. October CMS es una plataforma de sistema de administración de contenidos (CMS) auto alojada basada en el framework PHP Laravel. • https://github.com/octobercms/october/commit/167b592eed291ae1563c8fcc5b9b34a03a300f26 https://github.com/octobercms/october/security/advisories/GHSA-wv23-pfj7-2mjj • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVE-2021-32650 – Arbitrary code execution in october/system
https://notcve.org/view.php?id=CVE-2021-32650
October CMS is a self-hosted content management system (CMS) platform based on the Laravel PHP Framework. Prior to versions 1.0.473 and 1.1.6, an attacker with access to the backend is able to execute PHP code by using the theme import feature. This will bypass the safe mode feature that prevents PHP execution in the CMS templates.The issue has been patched in Build 473 (v1.0.473) and v1.1.6. Those unable to upgrade may apply the patch to their installation manually as a workaround. October CMS es una plataforma de sistema de administración de contenidos (CMS) auto alojada basada en el framework PHP Laravel. • https://github.com/octobercms/october/commit/167b592eed291ae1563c8fcc5b9b34a03a300f26 https://github.com/octobercms/october/security/advisories/GHSA-5hfj-r725-wpc4 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVE-2021-41126 – Deleted Admin Can Sign In to Admin Interface
https://notcve.org/view.php?id=CVE-2021-41126
October is a Content Management System (CMS) and web platform built on the the Laravel PHP Framework. In affected versions administrator accounts which had previously been deleted may still be able to sign in to the backend using October CMS v2.0. The issue has been patched in v2.1.12 of the october/october package. There are no workarounds for this issue and all users should update. October es un Sistema de Administración de Contenidos (CMS) y una plataforma web construida sobre el framework PHP Laravel. • https://github.com/octobercms/october/security/advisories/GHSA-6gjf-7w99-j7x7 https://octobercms.com/changelog • CWE-287: Improper Authentication •