file upload vulnerability in pagekit 1.0.18

## Problem

A file upload vulnerability exists in the storage feature of pagekit 1.0.18, which allows an attacker to upload malicious files

## Technical Details

- Pagekit version:1.0.18
- Webserver:Nginx2.4.18
- Database:Mysql5.7.26
- PHP Version:7.3.4
- OS:Windows10

A file upload vulnerability exists in the storage feature of pagekit v1.0.18, which allows an attacker to upload malicious files

1. do not set allow php files to be uploaded

   
  ![1](https://user-images.githubusercontent.com/58295122/186859834-e232c0c1-bc16-4e71-8668-d6025b80f4c6.jpg)


2. then select the upload point to upload the malicious php file and modify the packet via Burp Suite to change the file name

   
   ![2](https://user-images.githubusercontent.com/58295122/186859883-9bbede9c-cd94-4bd0-8073-663548abc65f.png)


3. Upload the file successfully

   
   ![3](https://user-images.githubusercontent.com/58295122/186859929-88be9f2a-3ca2-4643-b557-bf18af1cd1db.png)


4. The file can then be accessed at /storage/shell.php

   ![4](https://user-images.githubusercontent.com/58295122/186859977-ced3603e-ec91-4517-bbd9-dc956a447219.png)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

file upload vulnerability in pagekit 1.0.18 #970

Problem

Technical Details

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

file upload vulnerability in pagekit 1.0.18 #970

Description

Problem

Technical Details

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions