Skip to content

Instantly share code, notes, and snippets.

@tree-chtsec
Created September 21, 2022 03:26
Show Gist options
  • Save tree-chtsec/22a0a531ea188fd5b76fe11d32f41e95 to your computer and use it in GitHub Desktop.
Save tree-chtsec/22a0a531ea188fd5b76fe11d32f41e95 to your computer and use it in GitHub Desktop.
> [Suggested description]
> BlogEngine.NET 3.3.8.0 allow an editor to create any folder with "files" prefix under ~/App_Data/,
> related to BlogEngine/BlogEngine.NET/AppCode/Api/FileManagerController.cs.
>
> ------------------------------------------
>
> [Vulnerability Type]
> Improper Input Validation
>
> ------------------------------------------
>
> [Vendor of Product]
> BlogEngine.NET
>
> ------------------------------------------
>
> [Affected Product Code Base]
> BlogEngine/BlogEngine.NET/AppCode/Api/FileManagerController.cs
>
> ------------------------------------------
>
> [Attack Type]
> Remote
>
> ------------------------------------------
>
> [Impact Code execution]
> true
>
> ------------------------------------------
>
> [Reference]
> https://github.com/BlogEngine/BlogEngine.NET
>
> ------------------------------------------
>
> [Discoverer]
> CHT Security/Tree
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment