| Название | iSharer and upRedSun File Sharing Wizard 1.5.0 Denial of Service |
|---|
| Описание | A vulnerability was found in File Sharing Wizard 1.5.0 and classified as problematic. Affected is the processing of data via the web server's GET method.
The lack of limitation, processing and manipulation of data sent through the GET method leads to denial of service.
The attack can be launched remotely. Additionally, there is an exploit available from the best and most trusted expoits repositories:
https://cxsecurity.com/issue/WLB-2024010023
Server vulnerable: https://drive.google.com/file/d/13fs9IHSaGQ27YIQNDyrQV20jCT7owPQ6/view?usp=sharing
Exploit: https://drive.google.com/file/d/1_ZXyz1tp9KD_VmCVRY566YhxhRX-xeSE/view?usp=sharing
Vídeo PoC: https://www.youtube.com/watch?v=WK7xK9KHiMU
|
|---|
| Источник | ⚠️ https://www.youtube.com/watch?v=WK7xK9KHiMU |
|---|
| Пользователь | fernando.mengali (UID 60856) |
|---|
| Представление | 08.01.2024 16:50 (2 лет назад) |
|---|
| Модерация | 11.01.2024 11:28 (3 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 250438 [iSharer and upRedSun File Sharing Wizard до 1.5.0 GET Request отказ в обслуживании] |
|---|
| Баллы | 17 |
|---|