← back
CVE-2018-25270

ThinkPHP 5.0.23 Remote Code Execution via invokefunction

CVSS 9.3 CRITICALEPSS 0.9%CWE-639
ThinkPHP 5.0.23 contains a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary PHP code by invoking functions through the routing parameter. Attackers can craft requests to the index.php endpoint with malicious function parameters to execute system commands with application privileges.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
Thinkphp · ThinkPHP
public PoCs found1
cve_referencewww.exploit-db.com/exploits/45978unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://github.com/top-think/framework/https://thinkphp.cnhttps://www.exploit-db.com/exploits/45978https://www.vulncheck.com/advisories/thinkphp-remote-code-execution-via-invokefunction