Submit #375244: https://prain.cn/ Prain Open source PHP light blog program <=1.3.0 arbitrary file writesinfo

Titelhttps://prain.cn/ Prain Open source PHP light blog program <=1.3.0 arbitrary file writes
BeschreibungA vulnerability classified as critical has been discovered in the prain PHP light blog application. This affects the install section of the file index.php. Manipulation of the file parameter results in arbitrary file writes cause code execution.
Quelle⚠️ https://gist.github.com/J1rrY-learn/c5818d700476c4debcf8a334a5c9c243
Benutzer
 J1rrY (UID 64327)
Einreichung16.07.2024 10:25 (vor 2 Jahren)
Moderieren20.07.2024 12:21 (4 days later)
StatusAkzeptiert
VulDB Eintrag272072 [Prain bis 1.3.0 HTTP POST Request /?import Datei erweiterte Rechte]
Punkte16

ZurückÜbersichtWeiter

Do you want to use VulDB in your project?

Use the official API to access entries easily!