Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2022-25101: Vulnerability/WBCE_CMS_second.md at master · dota-st/Vulnerability

A vulnerability in the component /templates/install.php of WBCE CMS v1.5.2 allows attackers to execute arbitrary code via a crafted PHP file.

CVE
Open in Source
#vulnerability#web#git

file contains vulnerabilities****info

Author:dota_st

Target:https://github.com/WBCE/WBCE_CMS

Version:WBCE_CMS 1.5.2(Last updated on 2022-02-09)

Submit date: 2022-02-12

Description:Two files contain vulnerabilities that allow the execution of php scripts and the generation of webshell

image-20220211220151614

No.1

Install Moudule,The Install Moudule function decompresses the uploaded compressed package file

image-20220212121535208

Here unzip the uploaded zip file to temp/unzip folder and check if it contains info.php file

image-20220212122046183

image-20220212122018659

Finally, include and execute the info.php file extracted in the temp/unzip directory

image-20220212122212881

We create an info.php file with the content <?php phpinfo();?>

image-20220212122321250

Compress the info.php file into a zip file

image-20220212122358854

Upload compressed package

image-20220212122443939

Successful execution of php statements in info.php

image-20220212122506970

No.2

The Install Template function decompresses the uploaded compressed package file image-20220212122703750

Here unzip the uploaded zip into the temp/unzip folder and check if it contains the info.php file image-20220212122732384

image-20220212122754210

As before, we create an info.php file with the content <?php phpinfo();?>

image-20220212122358854

Upload compressed package

image-20220212122854530

Successful execution of php statements in info.php

image-20220212122909653

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE