by vicarius
log in join community
by @secatgourity
05 Aug 2024
#cve_analysis

Write a blog analysis for a CVE

publish

Journey to discovery and exploitation of path traversal in PHP-SPX (CVE-2024-42007)

by @secatgourity
by @secatgourity
05 Aug 2024
#cve_analysis

Write a blog analysis for a CVE

publish

Journey to discovery and exploitation of path traversal in PHP-SPX (CVE-2024-42007)

CVEs

CVE-2024-42007
5.8 Medium Severity

Screenshots from the blog posts

images/clzck7r54870a1in93vc7btsf.jpgimages/clzck7r54870a1in93vc7btsf.jpg

Summary

In this post, we deep-dive into the world of CVE-2024-42007 - a path traversal vulnerability in PHP-SPX project. We work through the lab setup and analyze (and exploit) the vulnerability from both blackbox and whitebox perspective. Based on our analysis, we check the effectiveness of the mitigation.

Description

Tags

#trendingCVE#open-source#php#path-traversal#PHP-SPX#source-code-analysis#black-box

@secatgourity

190 posts

Total vcoins

123.8K

Social media links

Comments (0)