Vulnerability CVE-2021-36711
Published: 2022-07-16

Description:
WebInterface in OctoBot before 0.4.4 allows remote code execution because Tentacles upload is mishandled.

See advisories in our WLB2 database:
Topic
Author
Date
High
OctoBot WebInterface 0.4.3 Remote Code Execution
Samy Younsi, Tho...
23.07.2022

 References:
https://packetstormsecurity.com/files/167721/Sashimi-Evil-OctoBot-Tentacle.html
https://github.com/Nwqda/Sashimi-Evil-OctoBot-Tentacle
https://github.com/Drakkar-Software/OctoBot/blob/master/CHANGELOG.md
https://github.com/Drakkar-Software/OctoBot/issues/1966
https://www.octobot.online/
Copyright 2024, cxsecurity.com

 

Back to Top