| tiêu đề | KodExplorer 4.52 Business Logic Bypass |
|---|
| Mô tả | KodExplorer v4.52 contains a pre-authentication business logic bypass in the shared folder upload mechanism. Even when a folder share is configured with uploads disabled through the `canUpload` setting, the backend `share/fileUpload` endpoint does not enforce that restriction. An unauthenticated attacker who knows the share link can therefore upload files directly into the shared directory. This can be abused to inject unwanted content, place phishing files, and tamper with collaborative shared data despite the owner explicitly disabling external uploads. |
|---|
| Nguồn | ⚠️ https://vulnplus-note.wetolink.com/share/PLCI4v0BWaF8 |
|---|
| Người dùng | vulnplusbot (UID 96250) |
|---|
| Đệ trình | 26/03/2026 11:17 (cách đây 27 ngày) |
|---|
| Kiểm duyệt | 18/04/2026 21:07 (23 days later) |
|---|
| Trạng thái | được chấp nhận |
|---|
| Mục VulDB | 358206 [Collabora KodExplorer đến 4.52 fileUpload Endpoint share.class.php nâng cao đặc quyền] |
|---|
| điểm | 20 |
|---|