漏洞描述
ProfileCMS 的资料脚本中存在不限制文件上传漏洞。远程攻击者可以借助未明向量,且涉及一个资料的创建,以上传并执行任意PHP指令。
ProfileCMS Profile Creation 任意文件上传漏洞
PoC代码
暂无相关漏洞推荐
- POC unifi-create-user: UniFi - Unauthenticated Creation Access For Users
- POC CVE-2019-12583: Zyxel ZyWall UAG/USG - Account Creation Access
- POC CVE-2019-9879: WPGraphQL 0.2.3 - User Creation
- POC CVE-2021-24522: ProfilePress < 3.1.11 - Cross-Site Scripting
- POC CVE-2021-27358: Grafana Unauthenticated Snapshot Creation
- POC CVE-2021-34621: WordPress ProfilePress 3.0.0-3.1.3 - Admin User Creation Weakness
- POC CVE-2021-46418: Telesquare TLR-2855KS6 - Arbitrary File Creation
- POC CVE-2022-0653: Wordpress Profile Builder Plugin Cross-Site Scripting
- POC CVE-2022-25369: Dynamicweb 9.5.0 - 9.12.7 Unauthenticated Admin User Creation
- POC CVE-2022-3578: WordPress ProfileGrid <5.1.1 - Cross-Site Scripting
- POC CVE-2024-50340: Symfony Profiler - Remote Access via Injected Arguments
- POC CVE-2024-6366: User Profile Builder < 3.11.8 - File Upload
- POC CVE-2024-7097: WSO2 User Registration - Arbitrary Account Creation