CVE-2022-24707 PoC — Anuko Time Tracker SQL注入漏洞

Source

https://github.com/Altelus1/CVE-2022-24707

Associated Vulnerability

Title:Anuko Time Tracker SQL注入漏洞 (CVE-2022-24707)
Description:Anuko Time Tracker是个人开发者的一个开源的时间统计系统。用于统计员工在各个工作上花费时间的一个平台。 Anuko Time Tracker 1.20.0.5646之前版本存在SQL注入漏洞，该漏洞源于Puncher插件重用了来自其他地方的代码，并依赖于POST请求中未经处理的日期参数，插件存在UNION SQL注入漏洞和基于时间的盲注入漏洞。

Description

PoC of CVE-2022-24707

Readme

# PoC for CVE-2022-24707

SQL Injection Vulnerability on Puncher plugin. A POST request can be crafted to exploit SQL Injection and leak database contents. This is tested on [Anuko Time Tracker 1.20.0.5640](https://github.com/anuko/timetracker/tree/0924ef499c2b0833a20c2d180b04fa70c6484b6d).

```
python3 exploit.py --help                                                               
usage: exploit.py [-h] --username USERNAME --password PASSWORD --host HOST [--sqli SQLI]

optional arguments:
  -h, --help           show this help message and exit
  --username USERNAME  Anuko Timetracker username
  --password PASSWORD  Anuko Timetracker password
  --host HOST          e.g. http://target.website.local, http://10.10.10.10, http://192.168.23.101:8000
  --sqli SQLI          SQL query to run. Defaults to getting all tables
```

![cve gif](./CVE-2022-24707.gif)

File Snapshot


 [4.0K]  /data/pocs/63d56c5e550d76fd984ce3c59be09588e6215dbb
├── [201K]  CVE-2022-24707.gif
├── [4.3K]  exploit.py
└── [ 865]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!