Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-31793 PoC — muhttpd 路径遍历漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/network/cves/2022/CVE-2022-31793.yaml
Associated Vulnerability
Title:muhttpd 路径遍历漏洞 (CVE-2022-31793)
Description:muhttpd是inglorion个人开发者的一个简单但完整的 Web 服务器。用可移植的 ANSI C 编写,支持日志记录、CGI 脚本、基于 MIME 类型的处理程序和 HTTPS。 muhttpd 1.1.7之前版本存在安全漏洞。攻击者利用该漏洞读取系统任意文件。
Description
muhttpd 1.1.5 and before are vulnerable to unauthenticated local file inclusion. The vulnerability allows retrieval of files from the file system.
File Snapshot

 id: CVE-2022-31793

info:
  name: muhttpd <=1.1.5 - Local Inclusion
  author: scent2d
  severity: hi

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.