CVEs-PoC/2020/CVE-2020-11579.md at b0e96c877abb080d7cf221c036336480ff266ccf

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-09 15:15:46 +02:00

Files

T

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

Description

An issue was discovered in Chadha PHPKB 9.0 Enterprise Edition. installer/test-connection.php (part of the installation process) allows a remote unauthenticated attacker to disclose local files on hosts running PHP before 7.2.16, or on hosts where the MySQL ALLOW LOCAL DATA INFILE option is enabled.

POC

Reference

https://shielder.it/
https://www.shielder.it/blog/mysql-and-cve-2020-11579-exploitation/

Github

https://github.com/0xT11/CVE-POC
https://github.com/404notf0und/CVE-Flow
https://github.com/ARPSyndicate/cvemon
https://github.com/ShielderSec/CVE-2020-11579
https://github.com/ShielderSec/poc
https://github.com/developer3000S/PoC-in-GitHub
https://github.com/hectorgie/PoC-in-GitHub
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/soosmile/POC

1.1 KiB Raw Blame History

CVE-2020-11579

Description

POC

Reference

Github

1.1 KiB

Raw Blame History