NVD Vulnerability Detail

Search Exploit, PoC

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2026-34415

Summary	Xerte Online Toolkits versions 3.15 and earlier contain an incomplete input validation vulnerability in the elFinder connector endpoint that fails to block PHP-executable extensions .php4 due to an incorrect regex pattern. Unauthenticated attackers can exploit this flaw combined with authentication bypass and path traversal vulnerabilities to upload malicious PHP code, rename it with a .php4 extension, and execute arbitrary operating system commands on the server.
Publication Date	April 23, 2026, 4:17 a.m.
Registration Date	April 25, 2026, 4:06 a.m.
Last Update	April 25, 2026, 5:16 a.m.

CVSS3.1 : CRITICAL
スコア	9.8
Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃に必要な特権レベル(PR)	不要
利用者の関与(UI)	不要
影響の想定範囲(S)	変更なし
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高

Related information, measures and tools

No	URL	refsource	タグ
1	https://github.com/bootstrapbool/xerteonlinetoolkits-rce	disclosure@vulncheck.com
2	https://github.com/thexerteproject/xerteonlinetoolkits/commit/02661be88cc369325ea01b508086bde7fbfec805	disclosure@vulncheck.com
3	https://github.com/thexerteproject/xerteonlinetoolkits/commit/17e4f945fe6a3400fa88c01eda18c1075ee4a212	disclosure@vulncheck.com
4	https://github.com/thexerteproject/xerteonlinetoolkits/commit/507d55c5e91bf9310b5b1c7fad8aebfef902ad23	disclosure@vulncheck.com
5	https://github.com/thexerteproject/xerteonlinetoolkits/issues/1527	disclosure@vulncheck.com
6	https://www.vulncheck.com/advisories/xerte-online-toolkits-file-upload-rce-via-elfinder-connector	disclosure@vulncheck.com
7	https://xerte.org.uk/index.php/en/downloads-1/category/3-xerte-online-toolkits	disclosure@vulncheck.com
8	https://xerte.org.uk/xertetoolkits_3.15_ChangeLog.html	disclosure@vulncheck.com

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-184	不完全なブラックリスト	https://cwe.mitre.org/data/definitions/184.html