CVE-2013-10067 PUBLISHED

Glossword 1.8.8 - 1.8.12 Arbitrary File Upload RCE

Assigner: VulnCheck
Reserved: 05.08.2025 Published: 05.08.2025 Updated: 06.08.2025

Glossword versions 1.8.8 through 1.8.12 contain an authenticated arbitrary file upload vulnerability. When deployed as a standalone application, the administrative interface (gw_admin.php) allows users with administrator privileges to upload files to the gw_temp/a/ directory. Due to insufficient validation of file type and path, attackers can upload and execute PHP payloads, resulting in remote code execution.

Metrics

CVSS 4.0

CVSS Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
CVSS Score: 9.4

Exploitability Metrics		Vulnerable System Impact Metrics		Subsequent System Impact Metrics
Attack Vector	Network	Confidentiality	High	Confidentiality	High
Attack Complexity	Low	Integrity	High	Integrity	High
Attack Requirements	None	Availability	High	Availability	High
Privileges Required	High
User Interaction	None

CVSS 4.0

Product Status

Vendor	Glossword Team
Product	Glossword
Versions	Default: unknown affected from 1.8.8 to 1.8.12 (incl.)

Credits

AkaStep finder

References

Problem Types

CWE-434 Unrestricted Upload of File with Dangerous Type CWE

Impacts

CAPEC-242 Code Injection