| Titel | KodExplorer KodExplorer <=4.51.03 Auth bypass && file upload unrestricted to RCE |
|---|
| Beschreibung | Kodexplorer has a auth bypass vuln, which allow evil user to bypass api endpoint auth to access normal user api endpoint. And after that we found a file upload unrestricted api endpoint in plugin yzOffice, and upload a php webshell to RCE. |
|---|
| Quelle | ⚠️ https://note.zhaoj.in/share/L38RNzUOwOtN |
|---|
| Benutzer | glzjin (UID 59815) |
|---|
| Einreichung | 11.12.2023 04:23 (vor 2 Jahren) |
|---|
| Moderieren | 15.12.2023 17:38 (5 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 248218 [kalcaddle KodExplorer bis 4.51.03 API Endpoint getFile path/file erweiterte Rechte] |
|---|
| Punkte | 16 |
|---|