CVE-2024-27199 PoC — JetBrains TeamCity 安全漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-27199.yaml

Associated Vulnerability

Title:JetBrains TeamCity 安全漏洞 (CVE-2024-27199)
Description:JetBrains TeamCity是捷克JetBrains公司的一套分布式构建管理和持续集成工具。该工具提供持续单元测试、代码质量分析和构建问题分析报告等功能。 JetBrains TeamCity 2023.11.4之前版本存在安全漏洞，该漏洞源于存在路径遍历漏洞。

Description

In JetBrains TeamCity before 2023.11.4 path traversal allowing to perform limited admin actions was possible

File Snapshot


 id: CVE-2024-27199

info:
  name: TeamCity < 2023.11.4 - Authentication Bypass
  author: DhiyaneshDk

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!