Login Sign Up

CVE-2023-1558

6.3 MEDIUM

📋 TL;DR

This critical vulnerability in Simple and Beautiful Shopping Cart System 1.0 allows attackers to upload arbitrary files without restrictions via uploadera.php. This affects all installations of version 1.0 that have the vulnerable component accessible. Remote attackers can exploit this to upload malicious files to the server.

💻 Affected Systems

Products:
  • Simple and Beautiful Shopping Cart System
Versions: 1.0
Operating Systems: All
Default Config Vulnerable: ⚠️ Yes
Notes: All installations with uploadera.php accessible are vulnerable

📦 What is this software?

Simple And Beautiful Shopping Cart System by Simple And Beautiful Shopping Cart System Project

View all CVEs affecting Simple And Beautiful Shopping Cart System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete server compromise via webshell upload leading to data theft, ransomware deployment, or use as attack platform

🟠

Likely Case

Webshell upload allowing persistent backdoor access, file manipulation, and potential privilege escalation

🟢

If Mitigated

Limited impact with proper file upload validation and server hardening

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Public exploit details available in GitHub repository, simple file upload bypass

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: None found

Restart Required: No

Instructions:

No official patch available. Consider replacing with alternative software or implementing workarounds.

🔧 Temporary Workarounds

Disable uploadera.php

linux

Remove or rename the vulnerable uploadera.php file

mv uploadera.php uploadera.php.disabled
chmod 000 uploadera.php

Implement file upload validation

all

Add server-side validation for file types, extensions, and content

🧯 If You Can't Patch

  • Implement WAF rules to block suspicious file uploads to uploadera.php
  • Restrict access to uploadera.php via .htaccess or web server configuration

🔍 How to Verify

Check if Vulnerable:

Check if uploadera.php exists in the web directory and test file upload functionality

Check Version:

Check software documentation or configuration files for version information

Verify Fix Applied:

Attempt to upload a file with restricted extension (like .php) and verify it's blocked

📡 Detection & Monitoring

Log Indicators:

  • Multiple file upload attempts to uploadera.php
  • Uploads of suspicious file types (.php, .exe, .jsp)

Network Indicators:

  • POST requests to uploadera.php with file upload content

SIEM Query:

source="web_server" AND uri="*uploadera.php*" AND method="POST" AND size>100000

📊 Metadata

CVE ID: CVE-2023-1558
CVSS v3 Score: 6.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-434
Published: March 22, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-1558, you might also want to check these:

CVE-2024-52490 10.0

This vulnerability allows attackers to upload arbitrary files, including web shells, to Pathomation ...

Same vulnerability type (CWE-434)
CVE-2024-43160 10.0

CVE-2024-43160 is an unauthenticated arbitrary file upload vulnerability in the BerqWP WordPress plu...

Same vulnerability type (CWE-434)
CVE-2024-8940 10.0

CVE-2024-8940 is a critical unrestricted file upload vulnerability in Scriptcase version 9.4.019 tha...

Same vulnerability type (CWE-434)