cve/CVE-2021-39172.md at 7909e50b64548be2689e5ad0bc37714dc0608a96

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

Description

Cachet is an open source status page system. Prior to version 2.5.1, authenticated users, regardless of their privileges (User or Admin), can exploit a new line injection in the configuration edition feature (e.g. mail settings) and gain arbitrary code execution on the server. This issue was addressed in version 2.5.1 by improving UpdateConfigCommandHandler and preventing the use of new lines characters in new configuration values. As a workaround, only allow trusted source IP addresses to access to the administration dashboard.

POC

Reference

https://blog.sonarsource.com/cachet-code-execution-via-laravel-configuration-injection/

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/NaInSec/CVE-PoC-in-GitHub
https://github.com/SYRTI/POC_to_review
https://github.com/W1ngLess/CVE-2021-39172-RCE
https://github.com/WhooAmii/POC_to_review
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/trhacknon/Pocingit
https://github.com/zecool/cve

1.4 KiB Raw Blame History

CVE-2021-39172

Description

POC

Reference

Github

1.4 KiB

Raw Blame History