إرسال #671101: ChurchCRM <= 5.18.0 Path Traversalالمعلومات

عنوانChurchCRM <= 5.18.0 Path Traversal
الوصفPath traversal vulnerability in backup restore functionality allows authenticated administrators to upload arbitrary files and achieve remote code execution by overwriting Apache .htaccess configuration files and uploading PHP webshells.
المصدر⚠️ https://github.com/uartu0/advisories/blob/main/churchcrm-path-traversal-rce-2025.md
المستخدم
 uartu0 (UID 90021)
ارسال08/10/2025 05:13 AM (6 أشهر منذ)
الاعتدال18/10/2025 02:54 PM (10 days later)
الحالةتمت الموافقة
إدخال VulDB329015 [ChurchCRM حتى 5.18.0 Backup Restore RestoreJob.php restoreFile اجتياز الدليل]
النقاط16

التالي نظرة عامة السابق

Do you want to use VulDB in your project?

Use the official API to access entries easily!