CVE-2023-25725 PoC — HAProxy 安全漏洞

Source

https://github.com/krillingws/LAB-CVE-2023-25725

Associated Vulnerability

Title:HAProxy 安全漏洞 (CVE-2023-25725)
Description:Haproxy HAProxy是法国Haproxy公司的一款开源的TCP/HTTP负载均衡服务器。该服务器提供4层、7层代理，并能支持上万级别的连接，具有高效、稳定等特点。 HAProxy 2.7.3之前版本存在安全漏洞，该漏洞源于在某些情况下 HTTP/1 标头会无意中丢失，也就是请求夹带。

Description

Lab environment to test CVE-2023-25725

File Snapshot


 [4.0K]  /data/pocs/9903e6934347bfb9750d62b6c92879290433b65f
├── [ 716]  docker-compose.yml
└── [4.0K]  haproxy
    └── [ 717]  haproxy.cfg

1 directory, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!