Submit #280001: Shopwind Shopwind <=4.6 Configuration injectioninfo

TitleShopwind Shopwind <=4.6 Configuration injection
DescriptionThe Shopwind software, specifically version ≤4.6, has a critical configuration injection vulnerability within the "DefaultController.php" file. This vulnerability allows an attacker to manipulate database creation parameters during the installation process, leading to arbitrary code execution. The issue arises because the software only verifies the referer without validating the install.lock. As a result, an attacker can create a malicious database on their own server, then run a POST request to reinstall the software using this database information, effectively injecting their own code into the "config.php" file. This vulnerability enables remote code execution, posing a significant security risk.
Source⚠️ https://note.zhaoj.in/share/QHdXavkw5eDm
User
 glzjin (UID 59815)
Submission02/09/2024 16:32 (2 years ago)
Moderation02/21/2024 11:43 (12 days later)
StatusAccepted
VulDB entry254393 [Shopwind up to 4.6 Installation DefaultController.php actionCreate code injection]
Points20

Do you want to use VulDB in your project?

Use the official API to access entries easily!