| Titel | Shopwind Shopwind <=4.6 Configuration injection |
|---|
| Beschreibung | The Shopwind software, specifically version ≤4.6, has a critical configuration injection vulnerability within the "DefaultController.php" file. This vulnerability allows an attacker to manipulate database creation parameters during the installation process, leading to arbitrary code execution. The issue arises because the software only verifies the referer without validating the install.lock. As a result, an attacker can create a malicious database on their own server, then run a POST request to reinstall the software using this database information, effectively injecting their own code into the "config.php" file. This vulnerability enables remote code execution, posing a significant security risk. |
|---|
| Quelle | ⚠️ https://note.zhaoj.in/share/QHdXavkw5eDm |
|---|
| Benutzer | glzjin (UID 59815) |
|---|
| Einreichung | 09.02.2024 16:32 (vor 2 Jahren) |
|---|
| Moderieren | 21.02.2024 11:43 (12 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 254393 [Shopwind bis 4.6 Installation DefaultController.php actionCreate erweiterte Rechte] |
|---|
| Punkte | 20 |
|---|