{"id":"CVE-2020-11807","details":"Because of Unrestricted Upload of a File with a Dangerous Type, Sourcefabric Newscoop 4.4.7 allows an authenticated user to execute arbitrary PHP code (and sometimes terminal commands) on a server by making an avatar update and then visiting the avatar file under the /images/ path.","modified":"2026-04-10T04:27:56.530250Z","published":"2020-05-19T16:15:11.167Z","references":[{"type":"FIX","url":"https://github.com/sourcefabric/Newscoop/blob/3df835637609a5a42530b2a4611177c634ad6274/newscoop/library/Newscoop/Image/ImageService.php#L226"},{"type":"EVIDENCE","url":"https://gist.github.com/V-Rico/82e9e52ac451dc20eef87b0999b3b1ee"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/sourcefabric/newscoop","events":[{"introduced":"0"},{"last_affected":"48e8df0054ed66af44f0d0206d233d96457a2f48"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"4.4.7"}]}}],"versions":["4.2.9","4.3.0-alpha","4.3.0-alpha2","4.3.0-alpha3","4.3.0-rc","4.4.0","4.4.0-rc","4.4.1","4.4.2","4.4.3","4.4.4","4.4.5","4.4.6","4.4.7","v3.4.0","v3.4.1","v3.5.0","v3.5.1","v3.6.0-BETA","v3.6.0-RC1","v3.6.0-RC2","v4.0-RC2","v4.0-RC4","v4.0.2","v4.2","v4.2-RC"],"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-11807.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"}]}