| Título | formtools.org formtools 3.1.1 SSTi |
|---|
| Descripción | Download Source Code:https://github.com/formtools/core
1. Log in as the admin user.
2. Visit the "/admin/settings/index.php?page=accounts" page, change the "Page Theme" template to "{{7*7}}", and save.
3. Visit the "/admin/clients/" page and create a user.
4. Log in as the newly created user to trigger the SSTi vulnerability. |
|---|
| Fuente | ⚠️ https://github.com/DeepMountains/Mirage/blob/main/CVE2-2.md |
|---|
| Usuario | Dee.Mirage (UID 71702) |
|---|
| Sumisión | 2024-07-10 17:15 (hace 2 años) |
|---|
| Moderación | 2024-07-20 08:11 (10 days later) |
|---|
| Estado | Aceptado |
|---|
| Entrada de VulDB | 271991 [formtools.org Form Tools 3.1.1 Setting index.php?page=accounts Page Theme escalada de privilegios] |
|---|
| Puntos | 19 |
|---|