15 matches found
CVE-2021-36711
WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...
OctoBot WebInterface 0.4.3 - Remote Code Execution Exploit
Exploit Title: OctoBot WebInterface 0.4.3 - Remote Code Execution RCE Exploit Author: Samy Younsi, Thomas Knudsen Vendor Homepage: https://www.octobot.online/ Software Link: https://github.com/Drakkar-Software/OctoBot Version: 0.4.0beta3 - 0.4.3 Tested on: Linux Ubuntu, CentOs CVE : CVE-2021-3671...
OctoBot WebInterface 0.4.3 - Remote Code Execution (RCE)
Exploit Title: OctoBot WebInterface 0.4.3 - Remote Code Execution RCE Date: 9/2/2021 Exploit Author: Samy Younsi, Thomas Knudsen Vendor Homepage: https://www.octobot.online/ Software Link: https://github.com/Drakkar-Software/OctoBot Version: 0.4.0beta3 - 0.4.3 Tested on: Linux Ubuntu, CentOs CVE ...
OctoBot WebInterface 0.4.3 Remote Code Execution
Exploit Title: OctoBot WebInterface 0.4.3 - Remote Code Execution RCE Date: 9/2/2021 Exploit Author: Samy Younsi, Thomas Knudsen Vendor Homepage: https://www.octobot.online/ Software Link: https://github.com/Drakkar-Software/OctoBot Version: 0.4.0beta3 - 0.4.3 Tested on: Linux Ubuntu, CentOs CVE ...
Remote Code Execution (RCE)
octobot is vulnerable to remote code execution. Lack of sanitization of Tentacles upload allows an attacker to inject and execute malicious package via uploading feature...
GHSA-FR75-X856-Q6J8 Octobot mishandles Tentacles upload
WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...
Octobot mishandles Tentacles upload
WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...
CVE-2021-36711
WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...
CVE-2021-36711
WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...
PYSEC-2022-235
WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...
Remote code execution
WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...
PYSEC-2022-235
WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...
CVE-2021-36711
WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled...
CVE-2021-36711
The provided corpus confirms CVE-2021-36711 affects the OctoBot WebInterface, with remote code execution possible due to mishandled Tentacles uploads in versions before 0.4.4. The Red Hat, OSV, PacketStorm, ExploitDB, and NVD entries agree on the same description: vulnerability in the WebInterfac...
OctoBot 代码问题漏洞
OctoBot is a powerful and fully modular open source cryptocurrency trading bot from the OctoBot community. A security vulnerability exists in OctoBot Tentacle versions 0.4.0beta3 through 0.4.3, which stems from a security flaw in the Tentacle Upload feature...