CVE-2023-30845 PoC — Google ESPv2 授权问题漏洞

Source

https://github.com/himori123/-CVE-2023-30845

Associated Vulnerability

Title:Google ESPv2 授权问题漏洞 (CVE-2023-30845)
Description:Google ESPv2是美国谷歌（Google）公司的一种通用的L7服务代理。可为JSON/REST或gRPC API服务启用API管理功能。 Google ESPv2 2.20.0至2.42.0版本存在授权问题漏洞，该漏洞源于API 客户端可以制作恶意的标头值绕过 JWT 身份验证。

Description

Explore CVE 2023-30845 automatically across multiple subdomains

Readme

# CVE-2023-30845
This is a script for CVE 2023-30845 automatically across multiple subdomains

Metódos de uso:
| CLONE REPOSITORY |   GIVE PERMISSION TO THE FILE | RUN THE FILE |
|----------|----------|----------|
|  https://github.com/himori123/-CVE-2023-30845.git  |  chmod +x CVE-2023-30845.sh |  ./CVE-2023-30845.sh  |

File Snapshot


 [4.0K]  /data/pocs/77b44a7335eaacb449f81ce0732bd9cc007f4e9c
├── [ 947]  CVE-2023-30845.sh
└── [ 324]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!