Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-25263 PoC — Stimulsoft 安全漏洞

Source
https://github.com/trustcves/CVE-2023-25263
Associated Vulnerability
Title:Stimulsoft 安全漏洞 (CVE-2023-25263)
Description:Stimulsoft(Stimulsoft Reports)是Stimulsoft公司的一套出色的 .NET 平台报告组件。用于在 JavaScript 应用程序中处理报告。 Stimulsoft 存在安全漏洞,该漏洞源于一旦攻击者反编译Stimulsoft.report.dll,攻击者就能够解密存储在mrt文件中的任何连接字符串。
File Snapshot

 [4.0K]  /data/pocs/3b6a343dae0b8ad644afdf32e308dd95b90b2002
├── [4.0K]  images
│   ├── [ 27K]  connection_string.png
│   ├── [ 28K]  decryption.png
│   └── [ 49K]  demo_setup.png
└── [4.6K]  writeup.md

1 directory, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.