WangYihang - Security Researcher - Exploit Intelligence Platform

CVE-2017-11366 NOMISEC CRITICAL WORKING POC

Codiad < 2.8.4 - Remote Code Execution via File Manager Search Parameter

components/filemanager/class.filemanager.php in Codiad before 2.8.4 is vulnerable to remote command execution because shell commands can be embedded in parameter values, as demonstrated by search_file_type.

CVSS 9.8

View Code

CVE-2018-14009 NOMISEC CRITICAL WORKING POC

Codiad < 2.8.4 - Remote Code Execution

Codiad through 2.8.4 allows Remote Code Execution, a different vulnerability than CVE-2017-11366 and CVE-2017-15689.

CVSS 9.8

View Code

CVE-2018-14009 NOMISEC CRITICAL WORKING POC

Codiad < 2.8.4 - Remote Code Execution

Codiad through 2.8.4 allows Remote Code Execution, a different vulnerability than CVE-2017-11366 and CVE-2017-15689.

CVSS 9.8

View Code

CVE-2017-11366 NOMISEC CRITICAL WORKING POC

Codiad < 2.8.4 - Remote Code Execution via File Manager Search Parameter

components/filemanager/class.filemanager.php in Codiad before 2.8.4 is vulnerable to remote command execution because shell commands can be embedded in parameter values, as demonstrated by search_file_type.

CVSS 9.8

View Code

CVE-2018-14009 WRITEUP CRITICAL WORKING POC

Codiad < 2.8.4 - Remote Code Execution

Codiad through 2.8.4 allows Remote Code Execution, a different vulnerability than CVE-2017-11366 and CVE-2017-15689.

CVSS 9.8

View Code

CVE-2018-14009 EXPLOITDB CRITICAL python WORKING POC

Codiad < 2.8.4 - Remote Code Execution

Codiad through 2.8.4 allows Remote Code Execution, a different vulnerability than CVE-2017-11366 and CVE-2017-15689.

CVSS 9.8

View Code