cve/CVE-2024-51567.md at main

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

1.4 KiB

Raw Permalink Blame History

CVE-2024-51567

Description

upgrademysqlstatus in databases/views.py in CyberPanel (aka Cyber Panel) before 5b08cd6 allows remote attackers to bypass authentication and execute arbitrary commands via /dataBases/upgrademysqlstatus by bypassing secMiddleware (which is only for a POST request) and using shell metacharacters in the statusfile property, as exploited in the wild in October 2024 by PSAUX. Versions through 2.3.6 and (unpatched) 2.3.7 are affected.

POC

Reference

https://dreyand.rs/code/review/2024/10/27/what-are-my-options-cyberpanel-v236-pre-auth-rce
https://www.bleepingcomputer.com/news/security/massive-psaux-ransomware-attack-targets-22-000-cyberpanel-instances/

Github

https://github.com/Threekiii/CVE
https://github.com/XiaomingX/cve-2024-51567-poc
https://github.com/ajayalf/CVE-2024-51567
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/packetinside/CISA_BOT
https://github.com/thehash007/CVE-2024-51567-RCE-EXPLOIT
https://github.com/ums91/CISA_BOT

1.4 KiB Raw Permalink Blame History

CVE-2024-51567

Description

POC

Reference

Github

1.4 KiB

Raw Permalink Blame History