Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Vulnerability Local File Inclusion #14

Open
advidsec opened this issue Aug 31, 2018 · 0 comments
Open

Vulnerability Local File Inclusion #14

advidsec opened this issue Aug 31, 2018 · 0 comments
Assignees
Labels

Comments

@advidsec
Copy link

advidsec commented Aug 31, 2018

This bug was found using the portal in the files:

/wechat-broadcast/wechat/Image.php

The parameter "url" it is not sanitized allowing include local or remote files.

Please contact me at advidsec@gmail.com for more info (i send you and email with extended info)

@springjk springjk added the bug label Sep 12, 2018
@springjk springjk self-assigned this Sep 12, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

No branches or pull requests

2 participants