漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
Nginx Proxy Manager Authenticated RCE via setupCertbotPlugins()
Vulnerability Description
Nginx Proxy Manager versions 2.9.14 through 2.15.1, fixed in commit a5db5ed, contain an authenticated remote code execution vulnerability via OS command injection in the setupCertbotPlugins() function in backend/setup.js, allowing attackers with certificates:manage permission to execute arbitrary commands by storing a malicious payload in the dns_provider_credentials field. The user-controlled dns_provider_credentials value is interpolated directly into a shell command executed via child_process.exec() without sanitization or escaping, causing the injected command to execute upon backend restart.
CVSS Information
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
Nginx Proxy Manager 操作系统命令注入漏洞
Vulnerability Description
Nginx Proxy Manager是Nginx Proxy Manager开源的一个 Docker 容器。用于通过简单、强大的接口管理 Nginx 代理主机。 Nginx Proxy Manager 2.9.14版本至2.15.1版本存在操作系统命令注入漏洞,该漏洞源于setupCertbotPlugins函数存在OS命令注入,可能导致具有certificates:manage权限的攻击者通过在dns_provider_credentials字段存储恶意有效载荷执行任意命令。
CVSS Information
N/A
Vulnerability Type
N/A