CVE-2012-10054

Critical CVSS 9.3

Overview

Umbraco CMS versions prior to 4.7.1 are vulnerable to unauthenticated remote code execution via the codeEditorSave.asmx SOAP endpoint, which exposes a SaveDLRScript operation that permits arbitrary file uploads without authentication. By exploiting a path traversal flaw in the fileName parameter, attackers can write malicious ASPX scripts directly into the web-accessible /umbraco/ directory and execute them remotely.

CWE: CWE-22 Published: 2025-08-13T21:15:29.687

Risk analysis

This vulnerability is rated 🔴 CRITICAL.

CVSS: 9.3 (CRITICAL)
Detected tags: path, rce, unauth_access (tag impact: VERY HIGH)

Recommended actions:

Canonicalize path; block `..` traversal; use allowlists.
Patch/upgrade immediately (remote code execution).
Reduce exposure (WAF/segmentation), minimize attack surface.
Enforce authentication/authorization; reduce default endpoint exposure.
Restrict types/MIME, store outside web root, inspect content.

Overview

Recommended tools

Tags