CVE-2020-36732 PoC — Node.js 安全特征问题漏洞

Source

https://github.com/miguelc49/CVE-2020-36732-2

Associated Vulnerability

Title:Node.js 安全特征问题漏洞 (CVE-2020-36732)
Description:Node.js是一个开源、跨平台的 JavaScript 运行时环境。 Node.js 3.2.1之前版本版本存在安全漏洞，该漏洞源于crypto-js 包通过连接字符串来生成随机数，但使用的是整数，这使得输出可预测。

Readme

# CVE-2020-36732-2

File Snapshot


 [4.0K]  /data/pocs/7f8b0eb1d87a8b9bdc00b8781944fdcbedd7a1be
├── [  69]  hello_world.js
├── [  40]  package.json
└── [  18]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!