Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-29887 PoC — spreadsheet-reader 路径遍历漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-29887.yaml
Associated Vulnerability
Title:spreadsheet-reader 路径遍历漏洞 (CVE-2023-29887)
Description:spreadsheet-reader是Nuovo开源的一种 PHP 电子表格阅读器。 spreadsheet-reader 0.5.11版本存在安全漏洞,该漏洞源于存在本地文件包含漏洞,允许远程攻击者通过File参数包含任意文件。
Description
A Local File inclusion vulnerability in test.php in spreadsheet-reader 0.5.11 allows remote attackers to include arbitrary files via the File parameter.
File Snapshot

 id: CVE-2023-29887

info:
  name: Nuovo Spreadsheet Reader 0.5.11 - Local File Inclusion
  author: c

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.