Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-2245 PoC — HANSUNCMS 代码问题漏洞

Source
https://github.com/user20252228/2023-2245
Associated Vulnerability
Title:HANSUNCMS 代码问题漏洞 (CVE-2023-2245)
Description:HANSUNCMS是中国翰臣科技(HANSUN)公司的一个建站系统。 HANSUNCMS 1.4.3版本存在代码问题漏洞,该漏洞源于文件/ueditor/net/controller.ashx?action=catchimage存在问题,会导致不受限制的上传。
Description
cve-2023-2245
Readme
A vulnerability was found in hansunCMS 1.4.3. It has been declared as critical. This vulnerability affects unknown code of the file /ueditor/net/controller.ashx?action=catchimage. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-227230 is the identifier assigned to this vulnerability.

A vulnerability was found in hansunCMS 1.4.3. It has been declared as critical. This vulnerability affects unknown code of the file /ueditor/net/controller.ashx?action=catchimage. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-227230 is the identifier assigned to this vulnerability.
File Snapshot

 [4.0K]  /data/pocs/68a2fe1e38137886ae63aca89844b84341a0a000
└── [ 777]  README.md

0 directories, 1 file
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.