DefenseCode Security Advisory
Magento 0day Arbitrary File Upload Vulnerability
(Remote Code Execution, CSRF)
Advisory ID: DC-2017-04-003
Software: Magento CE
Software Language: PHP
Version: 2.1.6 and below
Vendor Status: Vendor contacted / Not fixed
Release
, vulnerabilities confirmed
Release Date: 20170412
Risk: Medium
# Advisory Overview
BestWebSoft published more than 50 plugins to the wordpress.org site.
Almost all plugins contain the Panel - a component designed for
overview and management of various BestWebSoft plugins - both the ones
With CVE-2017-7643 I disclosed a command injection vulnerablity in the
KLoader
binary that ships with Proxifier <= 2.18.
Unfortunately 2.19 is also vulnerable to a slightly different attack
that
yields the same result.
When Proxifier is first run, if the KLoader binary is not suid root it
______ __ __
/ _ \ / _ \ \ \ / /
___| | | | ___| | | |_ __ _\ V /
/ __| | | |/ __| | | | '_ \__> <
| (__| |_| | (__| |_| | | | |/ . \
\___|\___/ \___|\___/|_| |_| /_/ \_\
