CVE-2021-31760 PoC — Webmin 跨站请求伪造漏洞

Source

https://github.com/Threekiii/Awesome-POC/blob/master/Web%E5%BA%94%E7%94%A8%E6%BC%8F%E6%B4%9E/Webmin%20%E5%A4%9A%E4%B8%AA%E9%AB%98%E5%8D%B1%E6%BC%8F%E6%B4%9E%20CVE-2021-31760~62.md

Associated Vulnerability

Title:Webmin 跨站请求伪造漏洞 (CVE-2021-31760)
Description:Webmin是Webmin社区的一套基于Web的用于类Unix操作系统中的系统管理工具。 Webmin 1.973 存在跨站请求伪造漏洞。攻击者通过Webmin的运行进程特性实现远程命令执行。

File Snapshot


 # Webmin 多个高危漏洞 CVE-2021-31760~62

## 漏洞描述

CVE-2021-31760:利用CSRF攻击，实现对Webmin的远程命令执行。

CVE-2021-3176

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-31760 PoC — Webmin 跨站请求伪造漏洞

Source

Associated Vulnerability

File Snapshot

Remarks