Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
CryptoLog Unauthenticated RCE via SQL Injection and Command Injection
Vulnerability Description
A remote code execution vulnerability exists in CryptoLog (PHP version, discontinued since 2009) due to a chained exploitation of SQL injection and command injection vulnerabilities. An unauthenticated attacker can gain shell access as the web server user by first exploiting a SQL injection flaw in login.php to bypass authentication, followed by command injection in logshares_ajax.php to execute arbitrary operating system commands. The login bypass is achieved by submitting crafted SQL via the user POST parameter. Once authenticated, the attacker can abuse the lsid POST parameter in the logshares_ajax.php endpoint to inject and execute a command using $(...) syntax, resulting in code execution under the web context. This exploitation path does not exist in the ASP.NET version of CryptoLog released since 2009.
CVSS Information
N/A
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
CRYPTTECH CryptoLog 安全漏洞
Vulnerability Description
CRYPTTECH CryptoLog是土耳其CRYPTTECH公司的一个日志管理系统。 CRYPTTECH CryptoLog存在安全漏洞,该漏洞源于SQL注入和命令注入问题,可能导致远程代码执行。
CVSS Information
N/A
Vulnerability Type
N/A