Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-33558 PoC — Boa 信息泄露漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-33558.yaml
Associated Vulnerability
Title:Boa 信息泄露漏洞 (CVE-2021-33558)
Description:Boa是Boa开源的一种适用于嵌入式应用程序的开放源代码。 Boa 0.94.13 版本存在信息泄露漏洞,该漏洞允许远程攻击者通过错误配置获取敏感信息。
Description
Boa 0.94.13 allows remote attackers to obtain sensitive information via a misconfiguration involving backup.html, preview.html, js/log.js, log.html, email.html, online-users.html, and config.js. NOTE- multiple third parties report that this is a site-specific issue because those files are not part of Boa.
File Snapshot

 id: CVE-2021-33558

info:
  name: Boa 0.94.13 - Information Disclosure
  author: DhiyaneshDK
  sever

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.