CVE-2023-39141 PoC — WebUI-Aria2 路径遍历漏洞

Source

https://github.com/MartiSabate/CVE-2023-39141-LFI-enumerator

Associated Vulnerability

Title:WebUI-Aria2 路径遍历漏洞 (CVE-2023-39141)
Description:WebUI-Aria2是hamza zia个人开发者的一个应用程序。用于创建与 aria2 交互的界面。 WebUI-Aria2 4fe2e版本存在路径遍历漏洞，该漏洞源于接受来自 URL 输入的文件名，而不将其清理。

Description

enumerate files and directories from a remote server

Readme

Enumerate remote server files by exploiting CVE-2023-39141

See POC: https://gist.github.com/JafarAkhondali/528fe6c548b78f454911fb866b23f66e

File Snapshot


 [4.0K]  /data/pocs/a76cc74f746f66ca1bb4e00d587677038b5ef483
├── [ 784]  enumerator.sh
└── [ 141]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!