# SolarWinds Web Help Desk硬编码凭证漏洞
## 概述
SolarWinds Web Help Desk (WHD) 软件存在硬编码凭据漏洞,允许远程未认证用户访问内部功能并修改数据。
## 影响版本
未提供具体影响版本信息。
## 细节
该漏洞源于软件中硬编码的凭据,使得远程未认证用户能够利用这些凭据来访问内部功能,并对数据进行修改。
## 影响
此漏洞可能导致数据泄露、篡改和未经授权的操作,对系统安全性和数据完整性构成严重威胁。
| # | POC 描述 | 源链接 | 神龙链接 |
|---|---|---|---|
| 1 | Web Help Desk Hardcoded Credential Vulnerability (CVE-2024-28987) | https://github.com/fa-rrel/CVE-2024-28987-POC | POC详情 |
| 2 | Proof of Concept Exploit for CVE-2024-28987: SolarWinds Web Help Desk Hardcoded Credential Vulnerability | https://github.com/horizon3ai/CVE-2024-28987 | POC详情 |
| 3 | CVE-2024-28987 Scanner & Exploiter - SolarWinds Web Help Desk | https://github.com/PlayerFridei/CVE-2024-28987 | POC详情 |
| 4 | None | https://github.com/HazeLook/CVE-2024-28987 | POC详情 |
| 5 | None | https://github.com/GordonPol1/CVE-2024-28987 | POC详情 |
| 6 | None | https://github.com/Jaden1419/CVE-2024-28987 | POC详情 |
| 7 | None | https://github.com/hatvix1/CVE-2024-28987 | POC详情 |
| 8 | None | https://github.com/expl0itsecurity/CVE-2024-28987 | POC详情 |
| 9 | Web Help Desk Hardcoded Credential Vulnerability (CVE-2024-28987) | https://github.com/gh-ost00/CVE-2024-28987-POC | POC详情 |
| 10 | The SolarWinds Web Help Desk (WHD) software is affected by a hardcoded credential vulnerability, allowing remote unauthenticated user to access internal functionality and modify data. | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-28987.yaml | POC详情 |
| 11 | Proof of Concept Exploit for CVE-2024-28987: SolarWinds Web Help Desk Hardcoded Credential Vulnerability | https://github.com/alecclyde/CVE-2024-28987 | POC详情 |
暂无评论