关联漏洞
标题:
PHP 操作系统命令注入漏洞
(CVE-2024-4577)
描述:PHP是一种在服务器端执行的脚本语言。 PHP存在操作系统命令注入漏洞,该漏洞源于在特定条件下,Windows系统使用“Best-Fit”行为替换命令行中的字符,这可能导致PHP CGI模块错误地将这些字符解释为PHP选项,从而泄露脚本的源代码,在服务器上运行任意PHP代码等。以下版本受到影响:8.1至8.1.29之前版本,8.3至8.3.8之前版本,8.2至8.2.20之前版本。
描述
CVE-2024-4577 Exploits
介绍
# Fastest CVE-2024-4577 Exploitation Tool
## Description: PHP CGI Remote Code Execution
The CVE-2024-4577 Exploit Tool (`exploit.py`) is a Python script designed to exploit web servers' specific vulnerability (CVE-2024-4577). Based on the response content, it sends POST requests to a list of provided hosts to determine if they are vulnerable.
## Features
- Multi-threaded execution for faster testing across multiple hosts.
- Checks for CVE-2024-4577 vulnerability by sending POST requests with custom headers and data.
- Outputs results to the console and optionally to a specified output file.
- Provides a summary of requests sent, vulnerable hosts found, not vulnerable hosts, and errors encountered.
## Requirements
- Python 3.6 or higher
- `requests` library (`pip install requests`)
- `colorama` library for colored console output (`pip install colorama`)
## Usage
### Installation
1. Clone or download the repository to your local machine.
2. Install required dependencies using pip:
```bash
sudo pip install requests colorama
```
## Onliner Installation:
```
git clone https://github.com/cybersagor/CVE-2024-4577.git &&
cd CVE-2024-4577 &&
sudo chmod +x exploit.py &&
sudo pip install requests colorama
```
## Command-line Arguments
```bash
python exploit.py -l host.txt -o output.txt -w 150
```
文件快照
[4.0K] /data/pocs/7ac280da35e9b96ceb12bad9032b09a3c58d3c3f
├── [4.0K] exploit.py
└── [1.3K] README.md
0 directories, 2 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。