Vulnerability Details CVE-2023-36348
POS Codekop v2.0 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the filename parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.042
EPSS Ranking 88.2%
CVSS Severity
CVSS v3 Score 8.8
References
- http://packetstormsecurity.com/files/173278/POS-Codekop-2.0-Shell-Upload.html
- https://www.youtube.com/watch?v=Ge0zqY0sGiQ
- https://yuyudhn.github.io/pos-codekop-vulnerability/
- http://packetstormsecurity.com/files/173278/POS-Codekop-2.0-Shell-Upload.html
- https://www.youtube.com/watch?v=Ge0zqY0sGiQ
- https://yuyudhn.github.io/pos-codekop-vulnerability/