Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
PwnDoc Arbitrary File Write to RCE using Path Traversal in backup restore as admin
Vulnerability Description
PwnDoc is a penetration test reporting application. Prior to version 1.2.0, the backup restore functionality is vulnerable to path traversal in the TAR entry's name, allowing an attacker to overwrite any file on the system with their content. By overwriting an included `.js` file and restarting the container, this allows for Remote Code Execution as an administrator. The remote code execution occurs because any user with the `backups:create` and `backups:update` (only administrators by default) is able to overwrite any file on the system. Version 1.2.0 fixes the issue.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
相对路径遍历
Vulnerability Title
PwnDoc 安全漏洞
Vulnerability Description
PwnDoc是PwnDoc开源的一个渗透测试报告生成器。 PwnDoc 1.2.0之前版本存在安全漏洞,该漏洞源于备份恢复功能存在路径遍历,可能导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A