CVE-2023-35885 PoC — CloudPanel 安全漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-35885.yaml

Associated Vulnerability

Title:CloudPanel 安全漏洞 (CVE-2023-35885)
Description:CloudPanel是CloudPanel开源的一款免费软件。用于配置和管理服务器。 CloudPanel 2.3.1之前版本存在安全漏洞，该漏洞源于具有不安全的文件管理器cookie身份验证。

Description

CloudPanel 2 before 2.3.1 has insecure file-manager cookie authentication.

File Snapshot


 id: CVE-2023-35885

info:
  name: Cloudpanel 2 < 2.3.1 - Remote Code Execution
  author: DhiyaneshDk

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!