Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-32315 PoC — Ignite Realtime Openfire 路径遍历漏洞

Source
https://github.com/5rGJ5aCh5oCq5YW9/CVE-2023-32315exp
Associated Vulnerability
Title:Ignite Realtime Openfire 路径遍历漏洞 (CVE-2023-32315)
Description:Ignite Realtime Openfire是Ignite Realtime社区的一款采用Java开发且基于XMPP(前称Jabber,即时通讯协议)的跨平台开源实时协作(RTC)服务器。它能够构建高效率的即时通信服务器,并支持上万并发用户数量。 Ignite Realtime Openfire 存在安全漏洞,该漏洞源于允许未经身份验证的用户在已配置的 Openfire 环境中使用未经身份验证的 Openfire 设置环境,以访问为管理用户保留的 Openfire 管理控制台中的受限页面,以下产品和版
File Snapshot

 [4.0K]  /data/pocs/8390838001ad6bc101fc1bb4403b445bd83f7fb4
├── [3.4K]  CVE_2023_32315.md
├── [4.0K]  img
│   ├── [118K]  image-20230614152448246.png
│   ├── [257K]  image-20230614152706637.png
│   ├── [109K]  微信图片_20230614152035.png
│   └── [ 92K]  微信图片_20230614152251.png
└── [   0]  README.md

1 directory, 6 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.