Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Code Execution Vulnerability #959

Closed
sunu11 opened this issue Sep 19, 2018 · 12 comments
Closed

Code Execution Vulnerability #959

sunu11 opened this issue Sep 19, 2018 · 12 comments
Milestone

Comments

@sunu11
Copy link

sunu11 commented Sep 19, 2018

Hello:
I found an arbitrary file upload vulnerability in basercms. Can lead to remote code execution. Can you provide an email address? I will give you my report. thank you!

@ryuring
Copy link
Collaborator

ryuring commented Sep 19, 2018

@sunu11 Thanks for the report. I sent a mail to your email address in the past.

@sunu11
Copy link
Author

sunu11 commented Sep 19, 2018 via email

@sunu11
Copy link
Author

sunu11 commented Sep 20, 2018

@ sunu11感谢你的报道。我过去曾发邮件到您的电子邮件地址。

Hi, bro. Have you received my email, I have reported three vulnerabilities?

@ryuring
Copy link
Collaborator

ryuring commented Sep 20, 2018

@sunu11 No, I have not received your email

@sunu11
Copy link
Author

sunu11 commented Sep 20, 2018

@ryuring Yesterday I sent two emails to you, the code execution vulnerability report and the other two vulnerability reports. Did you not add my E-mail address to your mailbox whitelist?

@sunu11
Copy link
Author

sunu11 commented Sep 20, 2018

@ryuring
And you can got my report. Reply to me after you receive, I will close the download link

@ryuring
Copy link
Collaborator

ryuring commented Sep 20, 2018

@sunu11 I got a report. Thank you very much. Close please.

I am sending you an mail again. Have you received it?

@sunu11
Copy link
Author

sunu11 commented Sep 20, 2018

ok,I received it ,I have already sent you a reply email.

@ryuring
Copy link
Collaborator

ryuring commented Sep 20, 2018

@sunu11 Thank you, please let me know in the future by email.
I deleted the report download link from past comments.

@sunu11
Copy link
Author

sunu11 commented Sep 20, 2018

@ryuring 👌

@sunu11
Copy link
Author

sunu11 commented Oct 31, 2018

fixed #959

@ryuring
Copy link
Collaborator

ryuring commented Nov 27, 2018

@sunu11 I sent you an e - mail. I solved this problem so I will close it.

@ryuring ryuring closed this as completed Nov 27, 2018
@ryuring ryuring added this to the etc milestone Aug 13, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants