Skip to content

Access Control: ThinkPHP 5.0.23 - Remote Code Execution

Identifier: thinkphp_5023_rce

Scanner(s) Support

GraphQL Scanner REST Scanner WebApp Scanner ASM Scanner

Description

ThinkPHP 5.0.23 is susceptible to remote code execution. An attacker can execute malware, obtain sensitive information, modify data, and/or gain full control over a compromised system without entering necessary credentials.

Reference:

Configuration

Example

Example configuration:

---
security_tests:
  thinkphp_5023_rce:
    skip: false

Reference

skip

Type : boolean

Skip the test if true.