VariantIncomplete

CWE-553Command Shell in Externally Accessible Directory

Category: other

Description

A possible shell file exists in /cgi-bin/ or other accessible directories. This is extremely dangerous and can be used by an attacker to execute commands on the web server.

Common consequences· 1

  • Confidentiality / Integrity / Availability — Execute Unauthorized Code or Commands

Potential mitigations· 1

  • [Installation, System Configuration]Remove any Shells accessible under the web root folder and children directories.

Related CAPEC attack patterns· 1

CAPEC-650

References

  1. https://cwe.mitre.org/data/definitions/553.html

Exploits (incoming)1

TypeTargetConfidenceTier
AttackPatternUpload a Web Shell to a Web Servercapec-650100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CWE
Exposure of Information Through Shell Error Message
CWE
Improper Neutralization of Encoded URI Schemes in a Web Page
CWE
Unparsed Raw Web Content Delivery
CWE
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
CWE
Direct Request ('Forced Browsing')
CVE
CVE-2025-24936
Sourced from MITRE CWE 4.20. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.