CVE-2024-35373 Information

Description

Mocodo Mocodo Online 4.2.6 and below is vulnerable to Remote Code Execution via /web/rewrite.php.

Reference

https://github.com/laowantong/mocodo/blob/11ca879060a68e06844058cd969c6379214cc2a8/web/rewrite.php#L45 https://chocapikk.com/posts/2024/mocodo-vulnerabilities/