目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

CVE-2023-30839 PoC — PrestaShop SQL注入漏洞

来源
https://github.com/drkbcn/lblfixer_cve_2023_30839
关联漏洞
标题:PrestaShop SQL注入漏洞 (CVE-2023-30839)
Description:PrestaShop是美国PrestaShop公司的一套开源的电子商务解决方案。该方案提供多种支付方式、短消息提醒和商品图片缩放等功能。 PrestaShop存在SQL注入漏洞。攻击者利用该漏洞可以在数据库中写入、更新和删除。
Description
PrestaShop <1.7.8.9 Fix for CVE-2023-30839 and CVE-2023-30545
介绍
# LabelGrup Networks, official PrestaShop Partner

![LabelGrup Logo](logo.png)

Module for PrestaShop <1.7.8.9 to fix CVE-2023-30545, CVE-2023-30839 and CVE-2023-30839 vulnerabilities

For further information, check the following links: 
- CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-30545
- CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-30838
- CVE: https://nvd.nist.gov/vuln/detail/CVE-2023-30839

- GitHub: https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-8r4m-5p6p-52rp
- GitHub: https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-p379-cxqh-q822
- GitHub: https://github.com/PrestaShop/PrestaShop/security/advisories/GHSA-fh7r-996q-gvcp

**Instructions:**

 1. Download the latest release from this repository.
 2. Install the downloaded ZIP as a normal addon, this will replace/copy the needed files to your current PrestaShop.
 3. Be aware: If you remove the addon, your PrestaShop will be reverted to its original state, exposing the vulnerability again.

Visit our website:
https://www.labelgrup.com
文件快照

 [4.0K]  /data/pocs/2b2e607d21021b265a9494e11f6dafcb3001ea17
├── [4.0K]  backup
│   └── [ 533]  index.php
├── [ 533]  index.php
├── [6.9K]  lblfixer_cve_2023_30839.php
├── [ 14K]  logo.png
├── [4.0K]  patches
│   ├── [  12]  Db.php.dir
│   ├── [ 810]  Db.php.patch
│   ├── [ 533]  index.php
│   ├── [   9]  Validate.php.dir
│   └── [ 204]  Validate.php.patch
└── [1.0K]  README.md

2 directories, 10 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮件到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对 POC 代码进行快照,为了长期维护,请考虑为本地 POC 付费/捐赠,感谢您的支持。