Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-43177 PoC — CrushFTP 安全漏洞

Source
https://github.com/the-emmons/CVE-2023-43177
Associated Vulnerability
Title:CrushFTP 安全漏洞 (CVE-2023-43177)
Description:CrushFTP是一款文件传输服务器。 CrushFTP 10.5.1之前版本存在安全漏洞,该漏洞源于对象属性的不当控制,攻击者利用该漏洞可以获得对Java属性的部分控制,可以在主机系统上任意文件读取和删除原语。
Description
CrushFTP <= 10.5.1 Remote Code Execution. Researchers: Ryan Emmons, Evan Malamis
Readme
# CVE-2023-43177
CrushFTP &lt;= 10.5.1 Remote Code Execution

This repository holds the proof-of-concept RCE exploit developed during research.
File Snapshot

 [4.0K]  /data/pocs/b34083ebe954e19514ef65f88d7ec7e62a2265a7
├── [ 32K]  CVE-2023-43177.py
└── [ 144]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.