9.8

CVSS Score

3.1

Basic Information

CVE ID

CVE-2020-21489

GHSA ID

GHSA-6vf2-mfmr-qqqw

EPSS Score

0.77777%

CWE

CWE-434

Published

6/20/2023

Updated

11/8/2023

KEV Status

Technology

PHP

Concerned about an active attack path?

Talk to our security experts and see Miggo in action.

Miggo Vulnerability Database

→

CVE-2020-21489

CVE-2020-21489: Liufee CMS File Upload vulnerability

File Upload vulnerability in Liufee CMS, AKA Feehicms v.2.0.8 allows a remote attacker to execute arbitrary code via the /admin/index.php?r=admin-user%2Fupdate-self component.

(GitHub Advisory)

9.8

CVSS Score

3.1

Basic Information

CVE ID

CVE-2020-21489

GHSA ID

GHSA-6vf2-mfmr-qqqw

EPSS Score

0.77777%

CWE

CWE-434

Published

6/20/2023

Updated

11/8/2023

KEV Status

Technology

PHP

Technical Details

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Package Name	Ecosystem	Vulnerable Versions	First Patched Version
feehi/cms	composer	< 2.0.8.1	2.0.8.1

Vulnerability Intelligence
Miggo AI

Root Cause Analysis

The vulnerability stemmed from insufficient server-side validation during file uploads. The patch added 'beforeValidate()' methods to explicitly use UploadedFile::getInstance(), ensuring proper file handling. In vulnerable versions, the absence of these methods allowed attackers to bypass frontend restrictions. The Util::handleModelSingleFileUpload function saved files without validating their types, and the beforeSave methods in User/Article models triggered this insecure handling. The combination of missing UploadedFile validation and unrestricted Util function led to arbitrary file uploads.

Vulnerable functions

Only Mi**o us*rs **n s** t*is s**tion

WAF Protection Rules

WAF Rule

*il* Uplo** vuln*r**ility in Liu*** *MS, *K* ****i*ms v.*.*.* *llows * r*mot* *tt**k*r to *x**ut* *r*itr*ry *o** vi* t** `/**min/in**x.p*p?r=**min-us*r%**up**t*-s*l*` *ompon*nt.

Reasoning

T** vuln*r**ility st*mm** *rom insu**i*i*nt s*rv*r-si** `v*li**tion` *urin* *il* uplo**s. T** p*t** ***** '***or*V*li**t*()' m*t*o*s to *xpli*itly us* `Uplo*****il*::**tInst*n**()`, *nsurin* prop*r *il* **n*lin*. In vuln*r**l* v*rsions, t** **s*n** o

9.8

Basic Information

Concerned about an active attack path?

CVE-2020-21489: Liufee CMS File Upload vulnerability

9.8

Basic Information

Technical Details

Vulnerability IntelligenceMiggo AI

Root Cause Analysis

Vulnerable functions

WAF Protection Rules

WAF Rule

Reasoning

Vulnerability Intelligence
Miggo AI