CVE-2023-42387: GitHub - ranhn/TDSQL: 腾讯tdsql赤兔管理平台接口未授权访问信息泄露

Skip to content

Sign up

• • Actions

    Automate any workflow

  • Packages

    Host and manage packages

  • Security

    Find and fix vulnerabilities

  • Codespaces

    Instant dev environments

  • Copilot

    Write better code with AI

  • Code review

    Manage code changes

  • Issues

    Plan and track work

  • Discussions

    Collaborate outside of code

Explore

*   All features
*   Documentation
*   GitHub Skills
*   Blog

• For

  • Enterprise
  • Teams
  • Startups
  • Education

  By Solution

  • CI/CD & Automation
  • DevOps
  • DevSecOps

  Resources

  • Customer Stories
  • White papers, Ebooks, Webinars
  • Partners

• • GitHub Sponsors

    Fund open source developers

*   The ReadME Project
    
    GitHub community articles
    

Repositories

*   Topics
*   Trending
*   Collections

• Pricing

Search code, repositories, users, issues, pull requests…

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches****Use saved searches to filter your results more quickly

Sign in

Sign up

ranhn / TDSQL Public

• Notifications
• Fork 0
• Star 0

腾讯tdsql赤兔管理平台接口未授权访问信息泄露

0 stars 0 forks Activity

Star

Notifications

• Code
• Issues
• Pull requests
• Actions
• Projects
• Security
• Insights

More

main

Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?

1 branch 0 tags

Code

• Clone

  Use Git or checkout with SVN using the web URL.

• Open with GitHub Desktop

• Download ZIP

Latest commit

Git stats

• 10 commits

FilesPermalink

Failed to load latest commit information.

Type

Name

Latest commit message

Commit time

README.md

README.md

tdsql

腾讯TDSQL接口未授权访问信息泄露

CVE-2023-42387

漏洞地址： http://tdsql-xxxxxxx.com/tdsqlpcloud/index.php/api/install/get_db_info

漏洞描述： tdsql赤兔管理平台，api接口存在未授权返回数据库明文配置信息。

漏洞详情： 代码审计

1，访问上述接口。 2，得到明文账号密码，登录数据库。

漏洞版本： 赤免管理台 V1.8.9-1 bdffe65

修复建议：

class Install extends API_Controller{ public function __construct(){ parent::__construct(false); --修改为true } /**

• 获取数据库访问信息

• @author kevenchen

• @type GET/POST

• @return string ip 数据库IP

• @return string port 数据库端口

• @return string user 数据库账号

• @return string pwd 数据库密码

• @example {url} / public function get_db_info(){ – public修改为protect $this->config->load(‘database’); $dbconfs = $this->config->item(‘dbconfs’); $dbdefault = $this->config->item(‘dbdefault’); $conf = $dbconfs[$dbdefault]; $info = array( ‘ip’ => $conf[‘hostname’], ‘port’ => $conf[‘port’], ‘user’ => $conf[‘username’], ‘pwd’ => $conf[‘password’], ); echo json_encode($info); } /*

About

腾讯tdsql赤兔管理平台接口未授权访问信息泄露

Resources

Readme

Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks

Report repository

Releases

No releases published

Packages

No packages published