CVE-2022-46164 PoC — NodeBB 安全漏洞

Source

https://github.com/stephenbradshaw/CVE-2022-46164-poc

Associated Vulnerability

Title:NodeBB 安全漏洞 (CVE-2022-46164)
Description:NodeBB是Design Create Play团队的一套使用Node.js（一套建立在Google V8 JavaScript引擎之上的网络应用平台）构建的论坛系统。 NodeBB 2.6.1之前版本存在安全漏洞，该漏洞源于在socket.io消息处理中使用了带有原型的普通对象，可以使用特制的有效载荷来冒充其他用户和接管帐户。

Description

Basic POC exploit for CVE-2022-46164

Readme

# CVE-2022-46164-poc
Basic POC exploit for CVE-2022-46164

File Snapshot


 [4.0K]  /data/pocs/36a2ba0302c472382ee02fe10d0c3bde230f30d8
├── [1.3K]  LICENSE
├── [7.1K]  poc.py
└── [  58]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!