Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-31849 PoC — CData Connect 安全漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-31849.yaml
Associated Vulnerability
Title:CData Connect 安全漏洞 (CVE-2024-31849)
Description:CData Connect是CData公司的一个强大的数据连接平台,旨在帮助企业轻松地访问、整合和分析各种数据源。 CData Connect 23.4.8846之前版本存在安全漏洞,该漏洞源于存在路径遍历漏洞。攻击者可利用该漏洞获得对应用程序的完全管理访问权限。
Description
A path traversal vulnerability exists in the Java version of CData Connect < 23.4.8846 when running using the embedded Jetty server, which could allow an unauthenticated remote attacker to gain complete administrative access to the application.
File Snapshot

 id: CVE-2024-31849

info:
  name: CData Connect < 23.4.8846 - Path Traversal
  author: DhiyaneshDK
 

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.