Discuz!ML 3.2 through 3.4 allows remote attackers to execute arbitrary PHP code via a modified language cookie, as demonstrated by changing 4gH4_0df5_language=en to 4gH4_0df5_language=en'.phpinfo().'; (if the random prefix 4gH4_0df5_ were used).
References
Link | Resource |
---|---|
http://esoln.net/esoln/blog/2019/06/14/discuzml-v-3-x-code-injection-vulnerability/ | Exploit Third Party Advisory |
Configurations
History
No history.
Information
Published : 2019-07-18 18:15
Updated : 2024-02-28 17:08
NVD link : CVE-2019-13956
Mitre link : CVE-2019-13956
CVE.ORG link : CVE-2019-13956
JSON object : View
Products Affected
codersclub
- discuz\!ml
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')