Pingvin Share Arbitrary File Overwrite Vulnerability via HTTP POST
Vulnerability
A critical vulnerability in Pingvin Share, a self-hosted file sharing platform, allows users to overwrite arbitrary files on the server, including sensitive system files. This issue can be exploited by authenticated users or unauthenticated users if anonymous shares are permitted. The vulnerability arises from the file upload endpoint, where HTTP POST requests can be used to overwrite files. If exploited, this vulnerability could lead to a denial-of-service by overwriting the database or even allow for remote code execution.
Impact
Exploitation of this vulnerability allows for arbitrary file overwriting on the server. This could disrupt service by overwriting critical files such as the database, potentially leading to data loss or corruption. Additionally, according to the GitHub advisory, this vulnerability could be exploited to achieve remote code execution.
Remediation
Users are advised to upgrade to Pingvin Share version 1.4.0 or later, where this vulnerability has been patched.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.