Pimcore Unserialize Remote Code Execution

Posted by deepcore on May 1, 2019 – 4:41 am

This Metasploit module exploits a PHP unserialize() in Pimcore before 5.7.1 to execute arbitrary code. An authenticated user with “classes” permission could exploit the vulnerability. The vulnerability exists in the “ClassController.php” class, where the “bulk-commit” method makes it possible to exploit the unserialize function when passing untrusted values in “data” parameter. Tested on Pimcore 5.4.0-5.4.4, 5.5.1-5.5.4, 5.6.0-5.6.6 with the Symfony unserialize payload. Tested on Pimcore 4.0.0-4.6.5 with the Zend unserialize payload.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« APT Package Manager Persistence Agent Tesla Botnet Information Disclosure »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Pimcore Unserialize Remote Code Execution

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL