CVE-2023-37635 PoC — Uvdesk 安全漏洞

Source

https://github.com/oussama-binike/cve-2023-37635

Associated Vulnerability

Title:Uvdesk 安全漏洞 (CVE-2023-37635)
Description:Uvdesk是印度Uvdesk开源的一个完整的票务支持系统。 Uvdesk v1.1.1版本存在安全漏洞。攻击者利用该漏洞在登录页面上执行暴力攻击，以获得对应用程序的访问权限。

Readme

# **CVE-2023-37635 - Exploitation Guide**

## **Installation & Setup**

### **1️⃣ Install Dependencies**
```bash
pip install -r requirements.txt
```

### **2️⃣ Run the Exploit**
- **With a proxy:**
  ```bash
  python brutForc.py <URL>
  ```
- **Without a proxy:**
  ```bash
  python brutForc.py -n <URL>
  ```

## **Notes:**
- Replace `<URL>` with the target URL.
- The `-n` flag disables proxy usage.

⚠️ **Disclaimer**: This script is intended for educational and authorized security testing purposes only. Unauthorized use is illegal.

File Snapshot


 [4.0K]  /data/pocs/01e6e22ecea23d806e751015fb661e6c383a5b9b
├── [ 790]  brutForc.py
├── [ 379]  My_passwords.txt
├── [ 550]  README.md
├── [ 258]  requirements.txt
├── [2.2K]  utils.py
└── [1.6K]  uvdesk.py

0 directories, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!