CVE-2023-28343 PoC — Altenergy Power System Control Software 操作系统命令注入漏洞

Source

https://github.com/superzerosec/CVE-2023-28343

Associated Vulnerability

Title:Altenergy Power System Control Software 操作系统命令注入漏洞 (CVE-2023-28343)
Description:Altenergy Power System Control Software是Altenergy Power System公司的微型逆变器控制软件。 AlAltenergy Power System Control Software C1.2.5版本存在安全漏洞，该漏洞源于存在操作系统命令注入漏洞。

Description

CVE-2023-28343 POC exploit

Readme

# CVE-2023-28343
CVE-2023-28343 POC exploit

# Usage
```shell
usage: exploit.py [-h] -t TARGET [-l LOCALHOST] [-p LOCALPORT]

optional arguments:
  -h, --help            show this help message and exit
  -t TARGET, --target TARGET
                        Target url, http://localhost:9000
  -l LOCALHOST, --localhost LOCALHOST
                        Local IP address for reverse shell
  -p LOCALPORT, --localport LOCALPORT
                        Local port for reverse shell
```

File Snapshot


 [4.0K]  /data/pocs/9f12716355d2774a9fd571c545bbad4861838975
├── [2.4K]  exploit.py
├── [ 481]  README.md
└── [   9]  requirements.txt

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!