Description
Allowing null byte character (ASCII 0x00) in the URL can lead to a severe security risk. If the user can manipulate file contents on the server, this vulnerability may result in arbitrary PHP code execution, enabling attackers to take control of the server and execute unauthorized commands.
Recommendation
Upgrade Nginx to a version that properly sanitizes input and disallows null byte characters in URLs.
References
Related Issues
- Nginx Code Execution due to Misconfiguration - Vulnerability
- Angular Expressions - Remote Code Execution when using locals - CVE-2024-54152
- Nuxt vulnerable to remote code execution via the browser when running the test locally - CVE-2024-34344
- paperclip Vulnerable to Unauthenticated Remote Code Execution via Import Authorization Bypass - paperclipai - CVE-2026-41679
You might also like:
- Tags:
- Nginx
- Arbitrary Code Execution
- Input Validation
Anything's wrong? Let us know Last updated on May 13, 2024