The vulnerability of the extract() function in Outdoorbits Little-Backup-Box software, which allows a hacker to execute arbitrary code.

The vulnerability of the extract function in image and multimedia file backup software from Outdoorbits Little-Backup-Box is related to insufficient data authenticity checking. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

CVE-2023-52262

outdoorbits little-backup-box aka Little Backup Box before f39f91c allows remote attackers to execute arbitrary code because the PHP extract function is used for untrusted input...

Input validation

outdoorbits little-backup-box aka Little Backup Box before f39f91c allows remote attackers to execute arbitrary code because the PHP extract function is used for untrusted input...

CVE-2023-52262

outdoorbits little-backup-box aka Little Backup Box before f39f91c allows remote attackers to execute arbitrary code because the PHP extract function is used for untrusted input...

Little Backup Box Security Vulnerability

Little Backup Box is a pocket-sized backup solution from the individual developers at outdoorbits that turns a single board computer into a multifunctional one. Little Backup Box suffers from a security vulnerability that stems from the presence of untrusted inputs to the PHP extract function,...

PT-2023-8937 · Outdoorbits · Little-Backup-Box

Name of the Vulnerable Software and Affected Versions: outdoorbits little-backup-box versions prior to f39f91c Description: The issue allows remote attackers to execute arbitrary code because the PHP extract function is used for untrusted input. This is due to insufficient validation of input dat...

CVE-2023-52262

Outdoorbits Little-backup-box; vulnerable in versions prior to f39f91c due to untrusted input being fed to PHP extract, enabling remote code execution. A fix exists in the commit f39f91c; advised remediation is to update to a version after f39f91c (or temporarily disable PHP extract for untrusted...

outdoorbits.com XSS vulnerability

Open Bug Bounty ID: OBB-655655 Description| Value ---|--- Affected Website:| outdoorbits.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...