Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-20933 PoC — Influxdata InfluxDB 授权问题漏洞

Source
https://github.com/vulhub/vulhub/blob/master/influxdb/CVE-2019-20933/README.md
Associated Vulnerability
Title:Influxdata InfluxDB 授权问题漏洞 (CVE-2019-20933)
Description:Influxdata Influxdata InfluxDB是美国Influxdata公司的一个基于Go开发的时序性数据库。 Influxdata InfluxDB 1.7.6之前版本存在安全漏洞,该漏洞源于在服务httpd处理程序的身份验证功能中,有一个身份验证绕过漏洞。因为JWT令牌可能有一个空的SharedSecret(又名shared secret)。
File Snapshot

 # InfluxDB Empty JWT Secret Key Authentication Bypass (CVE-2019-20933)

[中文版本(Chinese version)](READ

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.