A vulnerability was found in HadSky up to 7.11.8. It has been declared as critical. This vulnerability affects unknown code of the file /install/index.php of the component Installation Interface. The manipulation leads to command injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-224242 is the identifier assigned to this vulnerability.
References
Link | Resource |
---|---|
https://gitee.com/galaxies2580/cve/blob/master/hadSky.md | Permissions Required |
https://gitee.com/xinbate/cve/blob/master/HadSky%20rce.md | Exploit Third Party Advisory |
https://vuldb.com/?ctiid.224242 | Third Party Advisory |
https://vuldb.com/?id.224242 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: VulDB
Published: 2023-03-29T06:00:06.947Z
Updated: 2023-10-21T13:52:53.427Z
Reserved: 2023-03-28T20:30:15.614Z
Link: CVE-2023-1685
JSON object: View
NVD Information
Status : Modified
Published: 2023-03-29T06:15:07.217
Modified: 2024-05-17T02:18:21.637
Link: CVE-2023-1685
JSON object: View
Redhat Information
No data.
CWE