by vicarius
log in join community
by @secatgourity
10 Jun 2024
#novel_exploit_analysis

An exploitation of a CVE vulnerability that has no prior exploit

publish

Dashing exploit for Dasherr (arbitrary file upload) (CVE-2023-23607)

by @secatgourity
by @secatgourity
10 Jun 2024
#novel_exploit_analysis

An exploitation of a CVE vulnerability that has no prior exploit

publish

Dashing exploit for Dasherr (arbitrary file upload) (CVE-2023-23607)

OS

Kali Linux
Kali LinuxKali
2024.1.*
2020.3.*
2019.4.*

Apps

D
DasherrDasherr Project
1.04.02.*
1.01.00.*
1.05.00.*
1.03.00.*
1.01.02.*
1.01.01.*
1.04.00.*
1.04.01.*
1.03.01.*
1.00.00.*

Screenshots from the blog posts

images/clwz8latbqfoe1hn000a85x8m.jpgimages/clwz8latbqfoe1hn000a85x8m.jpg

Summary

In this post, we will exploit an arbitrary file upload vulnerability in Dasherr to get code execution. The exploit is written in Golang and provides a reliable way to get code execution on the affected targets.

general

Description

Description

Tags

#RCE#easy_to_exploit#open-source#php#golang

@secatgourity

132 posts

Total vcoins

86.1K

Social media links

Comments (0)