Skip to main content

Sorcery Blog

PHPInfo Exposure in MyPrestaModules Modules CVE-2023-39677

Two modules that we tested by MyPrestaModules have a vulnerability where PHPInfo is exposed to an unauthenticated attacker. The modules SimpleImportProduct and UpdateProducts contain a file called send.php that has the following code snippet:

    if ( Tools::getValue('phpinfo') ){  
      phpinfo();  
      die;  
    }

This exposes PHPInfo information which is useful to an attacker and it requires no authentication to exploit. This was reported to MyPrestaModules and a patch was released.

Timeline

DateAction
10/07/2023Issue discovered during a pentest
12/07/2023Reported issue to MyPrestaModules
29/07/2023Requested CVE from MITRE
??/08/2023Patch released
28/08/2023Number CVE-2023-39677 assigned
07/09/2023Blog post and nuclei template released