5 matches found
Exploit for Incorrect Comparison in Dynamic-Linq Linq
Dynamic Linq injection to RCE - CVE-2023-32571 About Dynami...
CVE-2023-32571
Dynamic Linq 1.0.7.10 through 1.2.25 before 1.3.0 allows attackers to execute arbitrary code and commands when untrusted input to methods including Where, Select, OrderBy is parsed...
CVE-2023-32571
Dynamic Linq 1.0.7.10 through 1.2.25 before 1.3.0 allows attackers to execute arbitrary code and commands when untrusted input to methods including Where, Select, OrderBy is parsed...
CVE-2023-32571
CVE-2023-32571 affects System.Linq.Dynamic.Core (versions 1.0.7.10 through 1.2.25) prior to 1.3.0. The vulnerability arises when untrusted input in dynamic LINQ methods (Where, Select, OrderBy) is parsed, enabling remote code execution. Public PoCs show an attacker exploiting the injection to inv...
CVE-2023-32571
creationtimestamp| type| source ---|---|--- 2023-06-15 15:11:02+00:00| published-proof-of-concept| https://t.me/canyoupwnme/6862 2023-06-16 11:01:01+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8497 2023-11-25 04:56:10+00:00| seen| https://t.me/arpsyndicate/573...