Vulnerability Details
Basic Information
| Title | Exploit for Unrestricted Upload of File with Dangerous Type in Backdropcms Backdrop Cms |
|---|---|
| Type | githubexploit |
| Published | 2025-04-27T17:54:27 |
| Last Seen | 2025-04-28T03:03:40 |
| CVSS Score | 8.8 (HIGH) |
CVSS v3 Details
| Attack Vector | NETWORK |
|---|---|
| Attack Complexity | LOW |
| Privileges Required | LOW |
| User Interaction | NONE |
| Scope | UNCHANGED |
| Confidentiality Impact | HIGH |
| Integrity Impact | HIGH |
| Availability Impact | HIGH |
CVE Information
| CVE IDs | CVE-2022-42902, CVE-2023-46818, CVE-2022-42092 |
|---|---|
| CWE | |
| Bulletin Family | exploit |
Description
## π₯ Description
This Python exploit script targets an unrestricted file upload in Backdrop CMS to achieve a Remote Code Execution (RCE).
## β οΈ Affected Versions
Version 1.22.0 and prior version
Note: Backdrop CMS disputes this and argues that advanced permissions are required, which is why it might still exist in versions above 1.22.0. Iβm guessing they mean you would need to have admin access first. Still, itβs a valid vulnerability, and it can definitely be exploited to gain full system control.
## βοΈ Usage
“`shell
python3 CVE-2022-42902.py
Important: Start your listener before running the script:
“`shell
nc -lvnp
## π» Sample Run
## βΉοΈ Reference
– [CVE-2022-42092 Detail](https://nvd.nist.gov/vuln/detail/CVE-2022-42092)
Impact Assessment
| Base Score | 8.8 |
|---|---|
| Severity | HIGH |