A vulnerability was found in Humanica Humatrix 7 1.0.0.203/1.0.0.681 and classified as critical. Affected by this issue is an unknown functionality of the file recruitment_online/personalData/act_personaltab.cfm of the component Recruitment Module. The manipulation of the argument WRC01_USERID as part of a POST Request leads to a unrestricted upload vulnerability. Using CWE to declare the problem leads to CWE-434. The product allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment. Impacted is confidentiality, integrity, and availability. CVE summarizes:

The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated attacker to upload any file type to a candidate's profile picture folder via a crafted recruitment_online/personalData/act_personaltab.cfm multiple-part POST request with a predictable WRC01_USERID parameter. Moreover, the attacker can upload executable content (e.g., asp or aspx) for executing OS commands on the server.

The weakness was presented 08/18/2019. This vulnerability is handled as CVE-2019-15130 since 08/17/2019. The exploitation is known to be easy. The attack may be launched remotely. No form of authentication is required for exploitation. There are known technical details, but no exploit is available. The MITRE ATT&CK project declares the attack technique as T1608.002.

By approaching the search of inurl:recruitment_online/personalData/act_personaltab.cfm it is possible to find vulnerable targets with Google Hacking.

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.

See 140287 for similar entry.

Productinfo

Vendor

• Humanica

Name

• Humatrix 7

Version

• 1.0.0.203
• 1.0.0.681

CPE 2.3info

• 🔍
• 🔍
• 🔍

CPE 2.2info

• 🔍
• 🔍
• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion