mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-19 17:30:12 +00:00
738 B
738 B
CVE-2024-34467
Description
ThinkPHP 8.0.3 allows remote attackers to discover the PHPSESSION cookie because think_exception.tpl (aka the debug error output source code) provides this in an error message for a crafted URI in a GET request.
POC
Reference
- https://github.com/top-think/framework/issues/2996
- https://github.com/top-think/framework/issues/2996
Github
No PoCs found on GitHub currently.