| Title | www.horilla.com horilla 1.2.1 Remote Code Execution |
|---|
| Description | Multiple remote command execution vulnerabilities were found in horilla. Multiple handlers in horilla did not perform reasonable privilege checks, allowing request parameters from external sources to be passed into the eval() method, which ultimately led to the vulnerabilities. |
|---|
| Source | ⚠️ https://github.com/Sp1d3rL1/horilla-RCE |
|---|
| User | sp1d3r (UID 77907) |
|---|
| Submission | 11/24/2024 16:57 (2 years ago) |
|---|
| Moderation | 12/04/2024 09:48 (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 286858 [horilla up to 1.2.1 deserialization] |
|---|
| Points | 18 |
|---|