Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-44268 PoC — ImageMagick 安全漏洞

Source
https://github.com/FlojBoj/CVE-2022-44268
Associated Vulnerability
Title:ImageMagick 安全漏洞 (CVE-2022-44268)
Description:ImageMagick是美国ImageMagick公司的一套开源的图像处理软件。该软件可读取、转换或写入多种格式的图片。 ImageMagick 7.1.0-49版本存在安全漏洞,该漏洞源于存在信息泄露漏洞,当它在解析PNG图像时生成的图像可能会嵌入任意文件内容。
Description
ImageMagick 7.1.0-49 vulnerable to Information Disclosure
Readme
# CVE-2022-44268
ImageMagick 7.1.0-49 vulnerable to Information Disclosure

## Usage
### exploit.sh
`sh exploit.sh <path_to_image>`
- Output image is stored in `output.png`

### get_data.sh
`sh get_data.sh <path_to_image>`

## Source
https://www.metabaseq.com/threat/imagemagick-zero-days/
File Snapshot

 [4.0K]  /data/pocs/6738055f9ed5fb34412ea48aeadce26748d19dab
├── [ 106]  exploit.sh
├── [  58]  get_data.sh
└── [ 290]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.