Security
Headlines
HeadlinesLatestCVEs

Headline

GHSA-qcjq-7f7v-pvc8: Nginx-UI vulnerable to authenticated RCE through injecting into the application config via CRLF

Summary

Fix bypass to the following bugs

  • https://github.com/0xJacky/nginx-ui/security/advisories/GHSA-pxmr-q2x3-9x9m
  • https://github.com/0xJacky/nginx-ui/security/advisories/GHSA-8r25-68wm-jw35

Allowing to inject directly in the app.ini via CRLF to change the value of test_config_cmd and start_cmd resulting in an Authenticated RCE

Impact

Authenticated Remote execution on the host

ghsa
#vulnerability#git#rce#nginx#auth

Skip to content

    • Actions

      Automate any workflow

    • Packages

      Host and manage packages

    • Security

      Find and fix vulnerabilities

    • Codespaces

      Instant dev environments

    • Copilot

      Write better code with AI

    • Code review

      Manage code changes

    • Issues

      Plan and track work

    • Discussions

      Collaborate outside of code

    • GitHub Sponsors

      Fund open source developers

*   The ReadME Project
    
    GitHub community articles
  • Pricing

Provide feedback

Saved searches****Use saved searches to filter your results more quickly

Sign up

  1. GitHub Advisory Database
  2. GitHub Reviewed
  3. CVE-2024-23828

Nginx-UI vulnerable to authenticated RCE through injecting into the application config via CRLF

High severity GitHub Reviewed Published Jan 28, 2024 in 0xJacky/nginx-ui • Updated Jan 29, 2024

Package

gomod github.com/0xJacky/Nginx-UI (Go)

Affected versions

< 2.0.0-beta.12

Patched versions

2.0.0-beta.12

Description

Published to the GitHub Advisory Database

Jan 29, 2024

Last updated

Jan 29, 2024

ghsa: Latest News

GHSA-g5vw-3h65-2q3v: Access control vulnerable to user data deletion by anonynmous users