Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

CVE-2018-13784 PoC — PrestaShop 加密问题漏洞

Source
https://github.com/ambionics/prestashop-exploits
Associated Vulnerability
Title:PrestaShop 加密问题漏洞 (CVE-2018-13784)
Description:PrestaShop before 1.6.1.20 and 1.7.x before 1.7.3.4 mishandles cookie encryption in Cookie.php, Rinjdael.php, and Blowfish.php.
Description
Collection of exploits/POC for PrestaShop cookie vulnerabilities (CVE-2018-13784)
Readme
# prestashop-exploits
Collection of exploits/POCs for PrestaShop cookie vulnerabilities (CVE-2018-13784)

Refer to https://ambionics.io/blog/prestashop-privilege-escalation for details.
File Snapshot

 [4.0K]  /data/pocs/f66c03c3ee7b7a99e55902048b9c2faef8d9e2fa
├── [4.0K]  prestashop_aes_cbc
│   └── [3.0K]  prestashop_cbc_read.py
├── [4.0K]  prestashop_blowfish_ecb
│   ├── [5.7K]  crc_xor.c
│   └── [ 33K]  exploit.py
└── [ 188]  README.md

2 directories, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →