| 제목 | KodExplorer KodExplorer <=4.51.03 Auth bypass && file extract unrestricted to RCE |
|---|
| 설명 | Kodexplorer has an api endpoint auth bypass vuln, which allow ebil user to bypass api endpoint auth to access api endpoint, and builtin plugin zipView has an unrestricted file extract vuln, evil user may invoke it to extract remote zip file and create php webshell file in the target. |
|---|
| 원천 | ⚠️ https://note.zhaoj.in/share/D44UjzoFXYfi |
|---|
| 사용자 | glzjin (UID 59815) |
|---|
| 제출 | 2023. 12. 11. AM 11:06 (2 연령 ago) |
|---|
| 모더레이션 | 2023. 12. 15. PM 05:38 (4 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 248219 [kalcaddle KodExplorer 까지 4.51.03 ZIP Archive plugins/zipView/app.php unzipList 권한 상승] |
|---|
| 포인트들 | 17 |
|---|