CVE-2024-35475 PoC — OpenKM 安全漏洞

Source

https://github.com/carsonchan12345/CVE-2024-35475

Associated Vulnerability

Title:OpenKM 安全漏洞 (CVE-2024-35475)
Description:OpenKM是西班牙OpenKM公司的一套文档管理系统。该系统提供版本控制、文件历史记录和文件共享等功能。 OpenKM 6.3.12及之前版本存在安全漏洞，该漏洞源于组件/admin/DatabaseQuery存在跨站请求伪造（CSRF）漏洞。

Readme

# CVE-2024-35475

**Vulnerability:** Cross-Site Request Forgery (CSRF)
---------------------------------------------
### Affected Product
OpenKM Community Edition
### Affected Version
On or Before 6.3.12
### Vulnerable URL
/OpenKM/admin/DatabaseQuery
### Description
A Cross-Site Request Forgery (CSRF) vulnerability was discovered in OpenKM Community Edition on or before version 6.3.12. The vulnerability exists in the /admin/DatabaseQuery endpoint, which allows an attacker to manipulate a victim with administrative privileges to execute arbitrary SQL commands.
### Attack Vector
An attacker can craft a malicious CSRF payload that, when executed by an administrator, can execute arbitrary SQL commands on the vulnerable system. This can lead to unauthorized data modification, extraction, or destruction.
### Impact
* Unauthorized data modification
* Unauthorized data extraction
* Unauthorized data destruction
* Elevation of privileges
### References
* OpenKM Community Edition:
* https://www.openkm.com/
* https://github.com/openkm/document-management-system
* https://www.cve.org/CVERecord?id=CVE-2024-35475
* CWE: CWE-352 (Cross-Site Request Forgery)

File Snapshot


 [4.0K]  /data/pocs/84b33d9b0941066ca1a0bd372b00cf90a2280002
├── [ 585]  poc.html
└── [1.1K]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!