Access Control: nginxWebUI ≤ 3.5.0 runCmd - Remote Command Execution¶

Identifier: nginxwebui_runcmd_rce

Scanner(s) Support¶

Description¶

nginxWebUI's runCmd feature and is caused by incomplete validation of user input. Attackers can exploit the vulnerability by crafting malicious data to execute arbitrary commands on a vulnerable server without authorization.

Reference:

• https://github.com/qingchenhh/qc_poc/blob/main/Goby/nginxWebUI_runCmd_rce.go
• https://www.ctfiot.com/124166.html
• https://www.sangfor.com/farsight-labs-threat-intelligence/cybersecurity/nginxwebui-runcmd-remote-command-execution-vulnerability

Configuration¶

Example¶

Example configuration:

---
security_tests:
  nginxwebui_runcmd_rce:
    assets_allowed:
    - REST
    - GRAPHQL
    - WEBAPP
    skip: false

Reference¶

assets_allowed¶

Type : List[AssetType]*

List of assets that this check will cover.

skip¶

Type : boolean

Skip the test if true.