जमा करें #275593: OpenBi OpenBi <=1.0.8 Pre-Authentication Arbitrary File Creationजानकारी

शीर्षकOpenBi OpenBi <=1.0.8 Pre-Authentication Arbitrary File Creation
विवरणThe OpenBI software, specifically in file /application/index/controller/Screen.php, has a Pre-Authentication Arbitrary File Creation vulnerability. This flaw allows an attacker to create a zip file with arbitrary PHP code, which can be executed when accessed. This essentially leads to Remote Code Execution (RCE). The vulnerability has been confirmed in versions up to and including 1.0.8.
स्रोत⚠️ https://note.zhaoj.in/share/Liu1nbjddxu4
उपयोगकर्ता
 glzjin (UID 59815)
सबमिशन31/01/2024 07:55 AM (2 साल पहले)
संयम31/01/2024 02:10 PM (6 hours later)
स्थितिस्वीकृत
VulDB प्रविष्टि252475 [openBI तक 1.0.8 Screen.php index fileurl अधिकार वृद्धि]
अंक19

Want to know what is going to be exploited?

We predict KEV entries!