Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2023-24078

🗓️ 17 Feb 2023 00:00:00Reported by mitreType 
cve
 cve🔗 web.nvd.nist.gov👁 107 Views🌐 WEB

Real Time Logic FuguHub v8.1 RCE vulnerabilit

Related
Detection
Refs
Paths
ReporterTitlePublishedViews
Family
GithubExploit		Exploit for Code Injection in Realtimelogic Fuguhub
17 Jun 202303:39
githubexploit
GithubExploit		Exploit for CVE-2024-27697
9 Mar 202422:24
githubexploit
GithubExploit		Exploit for Code Injection in Realtimelogic Fuguhub
17 Jun 202303:39
githubexploit
GithubExploit		Exploit for Code Injection in Realtimelogic Fuguhub
7 Dec 202303:45
githubexploit
GithubExploit		Exploit for Code Injection in Realtimelogic Fuguhub
17 Jun 202310:11
githubexploit
0day.today		FuguHub 8.1 - Remote Code Execution Exploit
4 Jul 202300:00
zdt
Circl		CVE-2023-24078
17 Feb 202312:13
circl
CNNVD		Real Time Logic FuguHub 代码注入漏洞
17 Feb 202300:00
cnnvd
Cvelist		CVE-2023-24078
17 Feb 202300:00
cvelist
Exploit DB		FuguHub 8.1 - Remote Code Execution
3 Jul 202300:00
exploitdb
Rows per page
NVD
Node
realtimelogicfuguhubRange8.1windows
ParameterPositionPathDescriptionCWE
fileupload datafs/cmsdocs/Remote code execution via uploading a crafted script (LSP) to the FuguHub cmsdocs file server.CWE-94
emailrequest bodyConfig-Wizard/wizard/SetAdmin.lspCreate admin user as part of the exploit workflow.CWE-94
userrequest bodyConfig-Wizard/wizard/SetAdmin.lspCreate admin user as part of the exploit workflow.CWE-94
passwordrequest bodyConfig-Wizard/wizard/SetAdmin.lspCreate admin user as part of the exploit workflow.CWE-94
recoverpasswordrequest bodyConfig-Wizard/wizard/SetAdmin.lspCreate admin user as part of the exploit workflow.CWE-94
ba_usernamerequest bodyrtl/protected/wfslinks.lspAuthenticate to the file server to reach the vulnerable area.CWE-94
ba_passwordrequest bodyrtl/protected/wfslinks.lspAuthenticate to the file server to reach the vulnerable area.CWE-94

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
18 Mar 2025 17:15Current
9High risk
Vulners AI Score9
CVSS 3.18.8
EPSS0.6714
SSVC
CWE-94
real time logicfuguhubv8.1rceremote code executionvulnerabilitynvd
107