CVEs-PoC/2010/CVE-2010-3691.md

CVE-2010-3691

Description

PGTStorage/pgt-file.php in phpCAS before 1.1.3, when proxy mode is enabled, allows local users to overwrite arbitrary files via a symlink attack on an unspecified file.

POC

Reference

• https://issues.jasig.org/browse/PHPCAS-80

Github

No PoCs found on GitHub currently.