GLPI - Remote Code Execution (CVE-2022-35914)
收藏pentest-tools.com2025-03-25 收录
下载链接:
https://pentest-tools.com/vulnerabilities-exploits/undefined
下载链接
链接失效反馈官方服务:
资源简介:
GLPI server is vulnerable to CVE-2022-35914, a Remote Code Execution vulnerability in the <code>htmlawed</code> module. An attacker can inject operating system commands in the GLPI htmlawed.php page to perform Remote Code Executin on the underlying OS and take over the GLPI server.
GLPI服务器存在CVE-2022-35914漏洞,该漏洞位于<code>htmlawed</code>模块中,属于远程代码执行漏洞。攻击者可向GLPI htmlawed.php页面注入操作系统命令,从而在底层操作系统上执行远程代码执行,并接管GLPI服务器。
提供机构:
pentest-tools.com
