CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-14857 – OCS Inventory NG Webconsole Shell Upload
https://notcve.org/view.php?id=CVE-2018-14857
Unrestricted file upload (with remote code execution) in require/mail/NotificationMail.php in Webconsole in OCS Inventory NG OCS Inventory Server through 2.5 allows a privileged user to gain access to the server via a template file containing PHP code, because file extensions other than .html are permitted. Subida de archivos sin restricción (con ejecución remota de código) en require/mail/NotificationMail.php en Webconsole en OCS Inventory NG OCS Inventory Server hasta la versión 2.5 permite que un usuario privilegiado obtenga acceso al servidor mediante un archivo de plantilla que contiene código PHP, debido a que se permiten extensiones de archivo diferentes a .html. OCS Inventory NG OCS Inventory Server through 2.5 allows a privileged user to gain access to the server via a template file containing PHP code, because file extensions other than .html are permitted. • http://seclists.org/fulldisclosure/2018/Aug/6 http://www.securitytracker.com/id/1041418 https://github.com/OCSInventory-NG/OCSInventory-ocsreports/commit/cc572819e373f7ff81dec61591b6f465b43c5515 • CWE-434: Unrestricted Upload of File with Dangerous Type •