Headline
CVE-2022-29347: MyOwnCVEs/CVE-2022-29347 at main · evildrummer/MyOwnCVEs
An arbitrary file upload vulnerability in Web@rchiv 1.0 allows attackers to execute arbitrary commands via a crafted PHP file.
CVE-2021-39458****Arbitrary file upload vulnerability
- Vendor: zeitprax.com / blitzprax.com
- Product: Web@rchiv
- Version: 1.0
An arbitrary file upload vulnerability in Web@archiv 1.0 allows attackers to execute arbitrary commands via a malicious PHP file.
To exploit the vulnerabilty you have to upload a php file which contains the shell_exec() function of php to execute local commands on the system. The Applications is intended for uploading documents but does not filter against extensions or anything else. By choosing the file it will be immediately uploaded and a direct hyperlink will be displayed.
Generated hyperlink before submitting the actual file
Test for proper php code execution
Output of the command “id”
PoC PHP file