Dolibarr: OS Command Injection (RCE) via MAIN_ODT_AS_PDF configuration

Dolibarr is an enterprise resource planning (ERP) and customer relationship management (CRM) software package. In versions prior to 23.0.0 , the ODT to PDF conversion process in odf.php concatenates the MAIN_ODT_AS_PDF configuration constant directly into a shell command passed to exec() without sanitization. An authenticated administrator can inject arbitrary OS commands via this constant using command separators, achieving remote code execution as the web server user when any ODT template is generated. This issue has been fixed in version 23.0.0.

N/A

OS命令中使用的特殊元素转义处理不恰当(OS命令注入)

Dolibarr 安全漏洞

Dolibarr是Dolibarr开源的一个应用软件。可帮助管理用户组织的活动。 Dolibarr 23.0.0之前版本存在安全漏洞，该漏洞源于ODT转PDF过程中将配置常量直接拼接到shell命令中且未清理，可能导致经过身份验证的管理员注入任意OS命令并实现远程代码执行。

N/A

N/A