HTTP: Cmsms CVE-2018-1000094 Authenticated Remote Code Execution

This signature detects attempts to exploit a known vulnerability against CMSMS. A successful attack can lead to Remote Code Execution.

Extended Description

CMS Made Simple version 2.2.5 contains a Remote Code Execution vulnerability in File Manager that can result in Allows an authenticated admin that has access to the file manager to execute code on the server. This attack appear to be exploitable via File upload -> copy to any extension.

Affected Products

Cmsmadesimple cms_made_simple

Short Name
HTTP:PHP:CMSMS-AUTH-RCE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Authenticated CVE-2018-1000094 Cmsms Code Execution Remote
Release Date
09/06/2019
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3415
False Positive
Unknown
Vendors

Cmsmadesimple

CVSS Score

6.5

Found a potential security threat?