admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-05-05 10:16:59 +00:00
Code Issues Packages Projects Releases Wiki Activity

Create CVE-2023-23333.md

Browse Source 
add CVE-2023-23333
This commit is contained in:
Goby 2023-04-06 20:06:18 +08:00 committed by GitHub
parent 47ab907723
commit e47f88ee0d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
CVE-2023-23333.md Normal file
View File

@ -0,0 +1,13 @@
## SolarView Compact downloader.php RCE (CVE-2023-23333)
| **Vulnerability** | **SolarView Compact downloader.php RCE (CVE-2023-23333)** |
| :----: | :-----|
| **Chinese name** | SolarView Compact downloader.php 任意命令执行漏洞CVE-2023-23333|
| **CVSS core** | 10.0 |
| **FOFA Query** (click to view the results directly)| [body="SolarView Compact"](https://fofa.info/result?qbase64=dGl0bGU9PSJwbGF5U01TIg%3D%3D) |
| **Number of assets affected** | 5585 |
| **Description** | There is a command injection vulnerability in SolarView Compact through 6.00, attackers can execute commands by bypassing internal restrictions through downloader.php. |
| **Impact** | Attackers can use this vulnerability to arbitrarily execute code on the server side, write backdoors, obtain server permissions, and then control the entire web server. |
![](https://s3.bmp.ovh/imgs/2023/04/03/a32aa1b44858819c.gif)