MaxSite CMS Eval Function in Preview Ajax Endpoint Allows Remote Code Injection

Summary

A security issue has been found in the MaxSite CMS up to version 109.1. This means an attacker could potentially inject malicious code into the system through a remote attack. To fix this, update to version 109.2, which is available. If you use this version of MaxSite CMS, you should apply the update as soon as possible.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
max-3000	maxsite_cms	<= 109.2	–

Original title

A flaw has been found in MaxSite CMS up to 109.1. This impacts the function eval of the file application/maxsite/admin/plugins/editor_markitup/preview-ajax.php of the component MarkItUp Preview AJA...

Original description

A flaw has been found in MaxSite CMS up to 109.1. This impacts the function eval of the file application/maxsite/admin/plugins/editor_markitup/preview-ajax.php of the component MarkItUp Preview AJAX Endpoint. Executing a manipulation can lead to code injection. It is possible to launch the attack remotely. The exploit has been published and may be used. Upgrading to version 109.2 will fix this issue. This patch is called 08937a3c5d672a242d68f53e9fccf8a748820ef3. You should upgrade the affected component. The code maintainer was informed beforehand about the issues. He reacted very fast and highly professional.

nvd CVSS3.1 9.8

nvd CVSS2.0 7.5

nvd CVSS4.0 6.9

Vulnerability type

CWE-74 Injection

CWE-94 Code Injection

https://github.com/maxsite/cms/ Product
https://github.com/maxsite/cms/commit/08937a3c5d672a242d68f53e9fccf8a748820ef3 Patch
https://vuldb.com/?ctiid.348281 Permissions Required VDB Entry
https://vuldb.com/?id.348281 Third Party Advisory VDB Entry
https://vuldb.com/?submit.762169 Third Party Advisory VDB Entry