Invia #280001: Shopwind Shopwind <=4.6 Configuration injectioninformazioni

TitoloShopwind Shopwind <=4.6 Configuration injection
DescrizioneThe Shopwind software, specifically version ≤4.6, has a critical configuration injection vulnerability within the "DefaultController.php" file. This vulnerability allows an attacker to manipulate database creation parameters during the installation process, leading to arbitrary code execution. The issue arises because the software only verifies the referer without validating the install.lock. As a result, an attacker can create a malicious database on their own server, then run a POST request to reinstall the software using this database information, effectively injecting their own code into the "config.php" file. This vulnerability enables remote code execution, posing a significant security risk.
Fonte⚠️ https://note.zhaoj.in/share/QHdXavkw5eDm
Utente
 glzjin (UID 59815)
Sottomissione09/02/2024 16:32 (2 anni fa)
Moderazione21/02/2024 11:43 (12 days later)
StatoAccettato
Voce VulDB254393 [Shopwind fino a 4.6 Installation DefaultController.php actionCreate escalationi di privilegi]
Punti20

Want to stay up to date on a daily basis?

Enable the mail alert feature now!