| शीर्षक | KodExplorer KodExplorer ≤ 4.51.03 Auth bypass, unrestricted file read, RCE |
|---|
| विवरण | Kodexplorer has an api endpoint auth bypass vuln, which allow evil user may access to api endpoint directly. Then builtin plugin OfficeLIve has an unrestricted file read vuln, which may allow evil user to read any file in the server, which will lead to RCE. |
|---|
| स्रोत | ⚠️ https://note.zhaoj.in/share/oaYHbDTnPiU3 |
|---|
| उपयोगकर्ता | glzjin (UID 59815) |
|---|
| सबमिशन | 11/12/2023 05:59 PM (2 साल पहले) |
|---|
| संयम | 15/12/2023 05:38 PM (4 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 248221 [kalcaddle KodExplorer तक 4.51.03 app.php index path अधिकार वृद्धि] |
|---|
| अंक | 17 |
|---|