| Título | KodExplorer KodExplorer <=4.51.03 Auth bypass && file extract unrestricted to RCE |
|---|
| Descrição | Kodexplorer has an api endpoint auth bypass vuln, which allow ebil user to bypass api endpoint auth to access api endpoint, and builtin plugin zipView has an unrestricted file extract vuln, evil user may invoke it to extract remote zip file and create php webshell file in the target. |
|---|
| Fonte | ⚠️ https://note.zhaoj.in/share/D44UjzoFXYfi |
|---|
| Utilizador | glzjin (UID 59815) |
|---|
| Submissão | 11/12/2023 11h06 (há 2 anos) |
|---|
| Moderação | 15/12/2023 17h38 (4 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 248219 [kalcaddle KodExplorer até 4.51.03 ZIP Archive plugins/zipView/app.php unzipList Elevação de Privilégios] |
|---|
| Pontos | 17 |
|---|