Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-31851 PoC — CData Sync 安全漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-31851.yaml
Associated Vulnerability
Title:CData Sync 安全漏洞 (CVE-2024-31851)
Description:CData Sync是CData公司的一款数据同步工具,旨在帮助用户在不同的数据源之间进行数据同步和数据迁移。 CData Sync 23.4.8843之前版本存在安全漏洞,该漏洞源于存在路径遍历漏洞。攻击者可利用该漏洞获得对应用程序的完全管理访问权限。
Description
A path traversal vulnerability exists in the Java version of CData Sync < 23.4.8843 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain access to sensitive information and perform limited actions.
File Snapshot

 id: CVE-2024-31851

info:
  name: CData Sync < 23.4.8843 - Path Traversal
  author: DhiyaneshDK
  se

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.