CTF导航 CTF导航

CVE-2022-23046

渗透技巧 2年前 (2022) admin
896 0 0

CVE-2022-23046

PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the “subnet” parameter while searching a subnet via app/admin/routing/edit-bgp-mapping-search.php.

Installation

  1. Build
git clone https://github.com/dnr6419/CVE-2022-23046.git
cd CVE-2022-23046 && docker-compose up -d 
pip3(or pip) install -r requirements.txt
python3(or python) CVE-2022-23046.py -h
  1. Setup 2-1. Go to the http://[YOUR_IP] and Choose [New phpipam installation].
CVE-2022-23046

2-2. Choose [Automatic database installation].
2-3. MySQL username & Password is “root”/”my_secret_mysql_root_pass”.

CVE-2022-23046

2-4. Setting the Password and Login to check the installation is complete.

CVE-2022-23046

Exploit

  python3 CVE-2022-23046.py --url http://localhost --user admin
  # and input your password
CVE-2022-23046

Reference

https://github.com/jcarabantes/CVE-2022-23046.git
https://hub.docker.com/r/phpipam/phpipam-www

 

原文始发于Github :CVE-2022-23046

版权声明:admin 发表于 2022年2月21日 下午5:27。
转载请注明:CVE-2022-23046 | CTF导航

相关文章

通过虚构EIP重写来执行TRUN命令
admin
273
图数据库在主机安全的应用探索
admin
55
CVE-2023-0315 <2.0.8 GitHub 存储库 froxlor/froxlor 中的命令注入
admin
388
Dreamer CMS 代码审计
admin
513
某 E-Office v9 任意文件上传漏洞复现实战
admin
785
攻防实战下的威胁狩猎 |附完整报告下载
admin
629

暂无评论

您必须登录才能参与评论!
立即登录
暂无评论...

相关文章

VM逆向,一篇就够了
0
先知安全沙龙(西安站) – 浅谈XSS漏洞挖掘与构造思路
0
A Detailed Guide on Pwncat
0
geoserver代码审计
0
代理(ATT&CK篇)
0
CVE-2024-24576 Windows 下多语言命令注入漏洞分析
0
Ray OS 2.6.3 Command Injection
0
Moodle 3.10.1 – Authenticated Blind Time-Based SQL Injection – “sort” parameter
0
Online Fire Reporting System OFRS – SQL Injection Authentication Bypass
0
How a Race Condition Vulnerability Could Cast Multiple Votes
0