CVE-2024-23897 PoC — Jenkins 安全漏洞

Source

https://github.com/brandonhjh/Jenkins-CVE-2024-23897-Exploit-Demo

Associated Vulnerability

Title:Jenkins 安全漏洞 (CVE-2024-23897)
Description:Jenkins是Jenkins开源的一个应用软件。一个开源自动化服务器Jenkins提供了数百个插件来支持构建，部署和自动化任何项目。 Jenkins 2.441及之前版本、LTS 2.426.2及之前版本存在安全漏洞，该漏洞源于允许未经身份验证的攻击者读取Jenkins控制器文件系统。

Readme

# Jenkins-CVE-2024-23897-Exploit-Demo

File Snapshot


 [4.0K]  /data/pocs/a0c1cc8858e95b0ed0a40f0d521619ce893f3b84
├── [   0]  backend.py
├── [   0]  frontend.html
├── [ 232]  instructions.txt
├── [ 314]  Jenkinsfile
├── [   0]  log.txt
└── [  37]  README.md

0 directories, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!