Opensns Themecontroller Class Php A Vulnerability To Upload Any File In The Background
Opensns Themecontroller Class Php A Vulnerability To Upload Any File In The Background
OpenSNS ThemeController.class.php Any file upload vulnerability in the background
Vulnerability Description
There is file upload in the OpenSNS ThemeController.class.php file, where insufficient filtering causes any file to be uploaded to the server.
Vulnerability Impact
OpenSNS
Network surveying and mapping
icon_hash=”1167011145”
Vulnerability reappears
The login page is as follows
Upload page after login /admin.php?s=/theme/add.html
The vulnerable file is Application/Admin/Model/ThemeController.class.php
Only if the file suffix is zip and rar, it will be successfully uploaded and decompressed to the current Theme directory.
This post is licensed under CC BY 4.0 by the author.