CVE-2023-23333 PoC — Contec SolarView Compact 命令注入漏洞

Source

https://github.com/Mr-xn/CVE-2023-23333

Associated Vulnerability

Title:Contec SolarView Compact 命令注入漏洞 (CVE-2023-23333)
Description:Contec SolarView Compact是日本Contec公司的一个应用系统。提供光伏发电测量系统。 Contec SolarView Compact 6.00版本及之前版本存在安全漏洞。攻击者利用该漏洞通过downloader.php绕过内部限制来执行命令。

Description

SolarView Compact through 6.00 downloader.php commands injection (RCE) nuclei-templates

Readme

# CVE-2023-23333
SolarView Compact through 6.00 downloader.php commands injection (RCE) nuclei-templates

## Burp
![image](https://github.com/Mr-xn/CVE-2023-23333/assets/18260135/67eec781-e988-4745-8392-5a13219e2970)
## Nuclei
![image](https://github.com/Mr-xn/CVE-2023-23333/assets/18260135/9e0d9a41-b24e-49e3-a2c9-9f32048fb286)

File Snapshot


 [4.0K]  /data/pocs/00c5575668dede99d772f33d3797241dd3819ff5
├── [1.2K]  CVE-2023-23333.yaml
├── [1.1K]  LICENSE
└── [ 330]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!