Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Hi, this is Tencent Xcheck team. Our code safety check tool Xcheck has found several unserialize vulnerabilities in this project(v4, v5, v6). It leads to remote code execution. Here are the details.
v6
$this->rules = unserialize($this->request->post('rules', 'a:0:{}', ''));
$this->ignore = unserialize($this->request->post('ignore', 'a:0:{}', ''));
v6 v5 v4 2. app/wechat/controller/api/Push.php line: 102 $this->receive = $this->toLower(unserialize($this->request->post('receive', '', null)));
$this->receive = $this->toLower(unserialize($this->request->post('receive', '', null)));
Prevent from abusing of this vulnerability, we don't provide proof of concept. We hope to repair it as soon as possible.
From Xcheck Team
The text was updated successfully, but these errors were encountered:
#238 Testing
6ccd405
#238 Data format transfer changed
640a61a
#238 修改回复参数
b8a2ded
ThinkAdmin V6 接口的序列化数据全部改成了 JSON 更新方式: composer update 更新 vendor 中的 think-library php think xadmin:install admin 更新 admin 模块 php think xadmin:install wechat 更新 wechat 模块
Sorry, something went wrong.
No branches or pull requests
Hi, this is Tencent Xcheck team. Our code safety check tool Xcheck has found several unserialize vulnerabilities in this project(v4, v5, v6). It leads to remote code execution. Here are the details.
v6
line: 46
$this->rules = unserialize($this->request->post('rules', 'a:0:{}', ''));line: 47
$this->ignore = unserialize($this->request->post('ignore', 'a:0:{}', ''));v6 v5 v4
2. app/wechat/controller/api/Push.php
line: 102
$this->receive = $this->toLower(unserialize($this->request->post('receive', '', null)));Prevent from abusing of this vulnerability, we don't provide proof of concept. We hope to repair it as soon as possible.
From Xcheck Team
The text was updated successfully, but these errors were encountered: