| शीर्षक | PEShop PEShop <=1.0 Deserialize |
|---|
| विवरण | This vulnerability report outlines a critical issue in PEShop software version 1.0 or earlier, where a deserialization flaw exists within the 'index' function of the 'index.api.php' file. This flaw allows an attacker to control the 'picurl' parameter, which in turn can be exploited to read a phar file and trigger deserialization. By generating a malicious phar file, renaming it to 'phar.png', and uploading it via this vulnerability, an attacker can manipulate the system to read the file. This process triggers the deserialization of the malicious object that could alter user data, such as changing the admin username and password. Consequently, this vulnerability provides a potential pathway for unauthorized system access and control. |
|---|
| स्रोत | ⚠️ https://note.zhaoj.in/share/nxGzfEB6fFVY |
|---|
| उपयोगकर्ता | glzjin (UID 59815) |
|---|
| सबमिशन | 08/02/2024 03:55 PM (2 साल पहले) |
|---|
| संयम | 08/02/2024 06:57 PM (3 hours later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 253226 [PHPEMS तक 1.0 index.api.php index picurl अधिकार वृद्धि] |
|---|
| अंक | 20 |
|---|