| عنوان | LoveCards LoveCardsV2 2.3.2 External Control of System or Configuration Setting |
|---|
| الوصف | LoveCardsV2 is a confession wall program built with PHP8, using ThinkPHP as its foundation framework. In the latest version of LoveCardsV2(2.3.2), there is an unauthorized access vulnerability where attackers can modify configurations through unauthorized access, implement file uploads, and ultimately execute code execution. |
|---|
| المصدر | ⚠️ https://ctf-n0el4kls.notion.site/LoveCardsV2-Unauthentication-to-RCE-Vulnerability-19841990f44780de8263c1f77a007a83?pvs=4 |
|---|
| المستخدم | n0el4kls (UID 80089) |
|---|
| ارسال | 02/03/2025 01:09 PM (1 سنة منذ) |
|---|
| الاعتدال | 11/03/2025 04:11 PM (9 days later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 299290 [LoveCards LoveCardsV2 حتى 2.3.2 Setting /api/system/other تجاوز الصلاحيات] |
|---|
| النقاط | 15 |
|---|