Submit #468391: wangl1989 mysiteforme 1.0 Remote Command Executioninfo

Titlewangl1989 mysiteforme 1.0 Remote Command Execution
Descriptionsrc/main/java/com/mysiteforme/admin/config/ShiroConfig.java The rememberMeManager method in leaks the key 2AvVhdsgUs0FSA3SDFAdeg==, which can directly cause remote command execution.
Source⚠️ https://github.com/wangl1989/mysiteforme/issues/52
User
 LVZC (UID 74910)
Submission12/24/2024 01:03 PM (1 month ago)
Moderation01/04/2025 10:48 AM (11 days later)
StatusAccepted
VulDB Entry290210 [wangl1989 mysiteforme 1.0 ShiroConfig.java rememberMeManager deserialization]
Points15

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!