CVE-2023-41892 PoC — Pixel＆tonic Craft CMS 代码注入漏洞

Source

https://github.com/zaenhaxor/CVE-2023-41892

Associated Vulnerability

Title:Pixel＆tonic Craft CMS 代码注入漏洞 (CVE-2023-41892)
Description:Pixel＆tonic Craft CMS是美国Pixel＆tonic公司的一套内容管理系统（CMS）。 Pixel＆tonic Craft CMS 4.4.15之前版本存在代码注入漏洞，该漏洞源于存在远程代码执行漏洞。

Description

CVE-2023-41892 - Craft CMS Remote Code Execution (RCE)

Readme

CVE-2023-41892 - Craft CMS Remote Code Execution (RCE)

#### referensi:
#### https://github.com/advisories/GHSA-4w8r-3xrw-v25g
#### https://securityonline.info/craft-cms-fixes-rce-cve-2023-41892-flaw-rated-10-out-of-10-on-severity-scale/
#### https://blog.calif.io/p/craftcms-rce

File Snapshot


 [4.0K]  /data/pocs/1e4510de58be14e1c062571f19886fffbbd3f8bf
├── [303K]  a.png
├── [495K]  b.png
├── [1.6K]  cve.sh
└── [ 280]  README.md

0 directories, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!