CVE-2022-29361 PoC — Pallets Werkzeug 环境问题漏洞

Source

https://github.com/kevin-mizu/Werkzeug-CVE-2022-29361-PoC

Associated Vulnerability

Title:Pallets Werkzeug 环境问题漏洞 (CVE-2022-29361)
Description:Pallets Werkzeug是一款WSGI Web应用程序库。 Pallets Werkzeug 2.1.0版本及之前版本存在安全漏洞，该漏洞源于不正确解析 HTTP 的请求。攻击者利用该漏洞通过特制的 HTTP 请求执行 HTTP 请求走私。

Readme

# Werkzeug-CVE-2022-29361-PoC

File Snapshot


 [4.0K]  /data/pocs/12d1b538a212eea44f87b7d75831e495a18804bb
├── [ 151]  docker-compose.yaml
├── [1.0K]  LICENSE
├── [4.0K]  poc
│   ├── [ 390]  Dockerfile
│   └── [4.0K]  src
│       ├── [ 723]  app.py
│       └── [   5]  requirements.txt
├── [  31]  README.md
└── [4.0K]  vulnerable
    ├── [ 390]  Dockerfile
    └── [4.0K]  src
        ├── [ 272]  app.py
        ├── [  28]  requirements.txt
        └── [4.0K]  static
            └── [   0]  main.js

5 directories, 10 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!