CVE-2021-40323 PoC — Cobbler 代码注入漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-40323.yaml

Associated Vulnerability

Title:Cobbler 代码注入漏洞 (CVE-2021-40323)
Description:Cobbler是一款网络安装服务器套件，它主要用于快速建立Linux网络安装环境。 Cobbler 3.3.0 之前的版本存在安全漏洞，该漏洞可以导致远程代码执行。

Description

Cobbler before 3.3.0 allows log poisoning and resultant remote code execution via an XMLRPC method.

File Snapshot


 id: CVE-2021-40323

info:
  name: Cobbler <3.3.0 - Remote Code Execution
  author: c-sh0
  severity:

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.