漏洞平台

POC详情： 7af9474dd39f97be22508de284b1c771ec4f9c48

来源

https://github.com/rvizx/CVE-2024-42640

关联漏洞

标题： angular-base64-upload 安全漏洞 (CVE-2024-42640)
描述：angular-base64-upload是Adones Pitogo个人开发者的一个库。 angular-base64-upload 0.1.21之前版本存在安全漏洞，该漏洞源于容易受到通过 demo/server.php 进行的未经身份验证的远程代码执行攻击。

描述

Unauthenticated Remote Code Execution via Angular-Base64-Upload Library

介绍

# CVE-2024-42640

<br><br> 
<div align="center">
  <img width="250" src="https://zyenra.com/assets/img/angular-bug-tp.png" alt="angular-bug"> <br> <br>
  <p>CVE-2024-42640 <br>
  <b>Unauthenticated Remote Code Execution via Angular-Base64-Upload Library</b> <br>
  for more details: <b><a href="https://www.zyenra.com/blog/unauthenticated-rce-in-angular-base64-upload.html"> blog </a></b>
  </p>
</div>

### Introduction 

`angular-base64-upload` versions prior to v0.1.21 are vulnerable to unauthenticated remote code execution via the `angular-base64-upload/demo/server.php` endpoint. Exploiting this vulnerability allows an attacker to upload arbitrary file content to the server, which can subsequently be accessed through the angular-base64-upload/demo/uploads endpoint. This lead to the execution of previously uploaded content and ultimately enable the attacker to achieve code execution on the server.


![alt text](https://www.zyenra.com/assets/img/angular-base64-upload-rce-poc.png)

<br>

### Usage 

```bash
git clone https://github.com/rvizx/CVE-2024-42640
cd CVE-2024-42640
python3 exploit.py <target>
```

<br>

### Security Issue Details 

Exploit Title: Unauthenticated RCE via Angular-Base64-Upload Library <br>
Researcher: Ravindu Wickramasinghe | rvz (@rvizx9) <br>
Severity: Critical - 10.0 (CVSS 4.0) <br>
Vendor Homepage: https://www.npmjs.com/package/angular-base64-upload <br>
Software Link: https://github.com/adonespitogo/angular-base64-upload <br>
Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H <br>
Vulnerable Versions: < v0.1.21 <br>
Fixed Versions: >= v0.1.21 <br>
Tested on: Arch Linux <br>
CVE : CVE-2024-42640 <br>
NIST: https://nvd.nist.gov/vuln/detail/CVE-2024-42640 <br>
Github PoC Exploit Link : https://github.com/rvizx/CVE-2024-42640 <br>
Blog Post: https://www.zyenra.com/blog/unauthenticated-rce-in-angular-base64-upload.html <br>

文件快照


 [4.0K]  /data/pocs/7af9474dd39f97be22508de284b1c771ec4f9c48
├── [6.3K]  exploit.py
└── [1.9K]  README.md

0 directories, 2 files

神龙机器人已为您缓存

备注

1. 建议优先通过来源进行访问。

2. 如果因为来源失效或无法访问，请发送邮箱到 f.jinxu#gmail.com 索取本地快照（把 # 换成 @）。

3. 神龙已为您对POC代码进行快照，为了长期维护，请考虑为本地POC付费，感谢您的支持。