Miggo Logo
Miggo Vulnerability Database
CVE-2020-14209

CVE-2020-14209: Dolibarr Unrestricted Upload of File with Dangerous Type

8.8

CVSS Score
3.1

Basic Information

CVE ID
CVE-2020-14209
GHSA ID
GHSA-2gcp-xwxg-hqg3
EPSS Score
0.92534%
CWE
CWE-434
Published
5/24/2022
Updated
4/24/2024
KEV Status
No
Technology
TechnologyPHP

Technical Details

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Package NameEcosystemVulnerable VersionsFirst Patched Version
dolibarr/dolibarrcomposer< 11.0.511.0.5

Vulnerability Intelligence
Miggo AIMiggo AI

Miggo AIRoot Cause Analysis

The vulnerability stems from insufficient file type validation during uploads. The Wizlynx technical analysis explicitly references the isAFileWithExecutableContent function in functions.lib.php as the validation mechanism, showing its regex pattern (visible in their screenshot) didn't account for .pht/.phar extensions. This function's failure to properly identify these dangerous types allowed low-privilege users to upload executable files. The function's central role in file validation and direct mention in the PoC documentation gives high confidence in this assessment.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*oli**rr ***or* **.*.* *llows low-privil*** us*rs to uplo** *il*s o* **n**rous typ*s, l***in* to *r*itr*ry *o** *x**ution. T*is o**urs ****us* .p*t *n* .p**r *il*s **n ** uplo****. *lso, * .*t****ss *il* **n ** uplo**** to r**on*i*ur* ****ss *ontrol

Reasoning

T** vuln*r**ility st*ms *rom insu**i*i*nt *il* typ* v*li**tion *urin* uplo**s. T** Wizlynx t***ni**l *n*lysis *xpli*itly r***r*n**s t** `is**il*Wit**x**ut**l**ont*nt` *un*tion in `*un*tions.li*.p*p` *s t** v*li**tion m****nism, s*owin* its r***x p*tt