Command Injection Vulnerability in Tuleap's PhpWiki Plugin by Tuleap
CVE-2017-7981

8.8HIGH

Key Information:

Vendor: Enalean
Status: Tuleap
Vendor: CVE Published:; 29 April 2017

What is CVE-2017-7981?

The PhpWiki plugin in Tuleap versions before 9.7 is susceptible to a command injection flaw. This vulnerability arises from the use of the proc_open function, which allows an authenticated user to manipulate a syntax value, potentially including shell metacharacters. For example, an attacker could leverage this to execute arbitrary system commands, such as inserting a line like '<?plugin SyntaxHighlighter syntax="c;id"' to run the id command. This poses significant security risks as it enables unauthorized command execution within the server environment.

References

https://tuleap.net/file/shownotes.php?release_id=137#/lin...

x_refsource_MISC

https://github.com/xdrr/vulnerability-research/blob/maste...

x_refsource_MISC

https://tuleap.net/plugins/tracker/?aid=10159

x_refsource_MISC

EPSS Score

25% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 29, 2017
Vulnerability Reserved
Apr 20, 2017

Enalean

What is CVE-2017-7981?

References

EPSS Score

CVSS V3.1

Timeline