Code Injection in namelessmc/namelessValid
Aug 23rd 2021
Code Injection is the general term for attack types which consist of injecting code that is then interpreted/executed by the application. This type of attack exploits poor handling of untrusted data. These types of attacks are usually made possible due to a lack of proper input/output data validation.
https://github.com/NamelessMC/Nameless/ is vulnerable to code injection as shown below:
🕵️♂️ Proof of Concept
Perform the following actions with an admin account:
- Insert data on the fields. Insert
123); phpinfo();/*in the port field.
http://localhost/Nameless-2/core/email.phpand observe the phpinfo is executed.
This vulnerability allows RCE on the server.
Impact could cover loss of confidentiality, loss of integrity, loss of availability, and/or loss of accountability