AIKIDO-2024-10394

vich/uploader-bundle is vulnerable to Unrestricted Upload of File with Dangerous Type

92

Critical

vich/uploader-bundle php

AIKIDO-2024-10394: vich/uploader-bundle is vulnerable to Unrestricted Upload of File with Dangerous Type in versions 1.0.0 - 2.4.1.

Unrestricted Upload of File with Dangerous Type
Vuln in 1.0.0 - 2.4.1
Fixed in 2.4.2
No CVE available
TL;DR

Affected versions of this package are vulnerable to uploading files with a dangerous type. A user could easily bypass the MIME_TYPE check and upload a polyglot file (a mixed of php/png file), this could lead to remote code execution on the server and allow a malicious user to run code on the server.

Who does this affect?

You're affected if you are using a version which is within vulnerability ranges.

How can it be fixed?

Upgrade vich/uploader-bundle library to patch version.

Background info

Link to vendor website

Logo
© 2024 Aikido Security BV | BE0792914919
🇪🇺 Grauwpoort 1, 9000 Ghent, Belgium
🇺🇸 95 Third St, 2nd Fl, San Francisco, CA 94103, US