← Advisories

Ajaxel CMS 8.0 Multiple Vulnerabilities

High
Advisory ID
ZSL-2016-5320
Release Date
06 May 2016
Vendor
Ajaxel - http://www.ajaxel.com
Affected Version
8.0 and below
CVE
N/A
Tested On
Apache 2.4.10, MySQL 5.5.46
Summary

Ajaxel CMS is very simple ajaxified CMS and framework for any project needs.

Description

Ajaxel CMS version 8.0 and below suffers from multiple vulnerabilities inlcuding LFI, XSS, SQL injection and remote code execution via CSRF.

Proof of Concept
ajaxelcms_mv.txtTXT
Disclosure Timeline
13.04.2016Vulnerabilities discovered.
14.04.2016Vendor contacted.
18.04.2016Vendor releases version 8.1 to address these issues.
05.05.2016Public security advisory released.
Credits
Vulnerability discovered by Krzysztof Kosinski
References
[1]https://cxsecurity.com/issue/WLB-2016050027
[2]https://www.exploit-db.com/exploits/39781/
[3]https://packetstormsecurity.com/files/136998
[4]https://exchange.xforce.ibmcloud.com/vulnerabilities/113163
[5]https://exchange.xforce.ibmcloud.com/vulnerabilities/113164
[6]https://exchange.xforce.ibmcloud.com/vulnerabilities/113165
[7]https://exchange.xforce.ibmcloud.com/vulnerabilities/113166
Changelog
06.05.2016Initial release
07.05.2016Added reference [1]
21.05.2016Added reference [2], [3], [4], [5], [6] and [7]