Zongzhige ShopXO ZIP File Handler Unrestricted Upload Vulnerability in Payment Controller
Vulnerability
A critical vulnerability allowing unrestricted file uploads has been identified in Zongzhige ShopXO version 6.5.0. This issue arises in the ZIP File Handler component, specifically within the Upload function of the Payment.php file located in the admin controller. The vulnerability can be exploited remotely by manipulating the 'params' argument, although the exact input required for exploitation is not specified.
Impact
Exploitation of this vulnerability allows for unrestricted file uploads, which could lead to the execution of uploaded files or other malicious actions, depending on the nature of the uploaded content and the application's file handling processes.
Reproduction
To reproduce this vulnerability, send a request to the Upload function in the app/admin/controller/Payment.php file. Manipulate the 'params' argument to bypass file upload restrictions. Vulnerable targets can be found using Google Hacking by searching for 'inurl:app/admin/controller/Payment.php'.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.