Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2015-2996 PoC — SysAid Help Desk 目录遍历漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2015/CVE-2015-2996.yaml
Associated Vulnerability
Title:SysAid Help Desk 目录遍历漏洞 (CVE-2015-2996)
Description:SysAid Help Desk是美国SysAid公司的一套基于Web的IT管理软件。该软件支持流程自动化、资产管理和任务管理等。 SysAid Help Desk 15.2之前版本中存在目录遍历漏洞,该漏洞源于/sysaid/getGfiUpgradeFile URI和/sysaid/calculateRdsFileChecksum URI没有充分过滤‘fileName’参数。远程攻击者可借助目录遍历字符‘..’利用该漏洞读取任意文件或造成拒绝服务(CPU和内存消耗)。
Description
SysAid Help Desk before 15.2 contains multiple local file inclusion vulnerabilities which can allow remote attackers to read arbitrary files via .. (dot dot) in the fileName parameter of getGfiUpgradeFile or cause a denial of service (CPU and memory consumption) via .. (dot dot) in the fileName parameter of calculateRdsFileChecksum.
File Snapshot

 id: CVE-2015-2996

info:
  name: SysAid Help Desk <15.2 - Local File Inclusion
  author: 0x_Akoko
  

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.