wgcloud JDBC Deserialization Vulnerability Leading to Remote Code Execution
Vulnerability
A remote code execution vulnerability exists in wgcloud versions through 2.3.7. This issue arises from a JDBC deserialization vulnerability in the MySQL database management module's test connection feature. The vulnerability can be exploited by manipulating the database connection parameters, bypassing default limitations and injecting malicious payloads that are deserialized and executed on the server.
Impact
Exploitation of this vulnerability allows for arbitrary code execution on the server where wgcloud is running.
Reproduction
To reproduce this vulnerability, first, start the wgcloud application and ensure it is listening on the default port. Then, access the database management test connection feature and override the default database name parameter with a crafted payload that exploits the deserialization vulnerability. This payload should include parameters that trigger the execution of arbitrary code. Once the modified request is sent, the injected code will be executed on the server, demonstrating the successful exploitation of the vulnerability.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.