CVE-2018-16431 PoC — YFCMF 跨站请求伪造漏洞

Source

https://github.com/RHYru9/CVE-2018-16431

Associated Vulnerability

Title:YFCMF 跨站请求伪造漏洞 (CVE-2018-16431)
Description:YFCMF是一款基于ThinkPHP的网站内容管理框架。 YFCMF 3.0版本中的admin/admin/adminsave.html页面存在跨站请求伪造漏洞。远程攻击者可利用该漏洞添加管理员账户。

Description

Mass scanner , and  single for CVE-2018-16431

Readme


# CVE-2018-16431.

mass check for CVE-2018-16431, nuxeo app.


## Installation
Running
```bash
git clone https://github.com/RHYru9/CVE-2018-16431.git
cd CVE-2018-16431
```
## Running 
put the list of urls in file.txt , and run the program. 

```bash
python Mass-Checker.py
 ```

##  About Me
 i'm noobiee

## Screenshots

![Screenshot1](https://raw.githubusercontent.com/RHYru9/CVE-2018-16431/main/Screenshot%20(37).png)

![screnshoot2](https://raw.githubusercontent.com/RHYru9/CVE-2018-16431/main/Screenshot%20(38).png)

File Snapshot


 [4.0K]  /data/pocs/a1d8f4a836780d5e2f82c08ae23a43efc9fc0dc5
├── [6.9K]  CVE-2018-16341.py
├── [6.9K]  Mass-Checker.py
├── [ 522]  README.md
├── [  27]  requirements.txt
├── [ 72K]  Screenshot (37).png
└── [130K]  Screenshot (38).png

0 directories, 6 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!