cve/CVE-2023-1713.md at c052d0d6949679697108fa931a00cd4220694869

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-31 10:40:54 +00:00

0xMarcio 7e8cbc97be Update CVE sources 2024-08-13 18:35

2024-08-13 18:35:37 +00:00

Description

Insecure temporary file creation in bitrix/modules/crm/lib/order/import/instagram.php in Bitrix24 22.0.300 hosted on Apache HTTP Server allows remote authenticated attackers to execute arbitrary code via uploading a crafted ".htaccess" file.

POC

Reference

https://starlabs.sg/advisories/23/23-1713/

Github

https://github.com/ForceFledgling/CVE-2023-1713
https://github.com/k1rurk/check_bitrix
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/tanjiti/sec_profile

934 B Raw Blame History

CVE-2023-1713

Description

POC

Reference

Github

934 B

Raw Blame History