关联漏洞
标题:
Icinga Web 2 路径遍历漏洞
(CVE-2022-24716)
描述:Icinga Web 2是一个应用软件。Icinga Web 2是Icinga Project开发的下一代开源监控 Web 界面、框架和命令行界面,支持 Icinga 2、Icinga Core 和任何其他兼容 IDO 数据库的监控后端。 Icinga Web 2 存在路径遍历漏洞,该漏洞源于未经认证的Icinga Web 2 用户可以泄露web-server用户可以访问的本地系统文件的内容,包括带有数据库凭据的“icingaweb2”配置文件。
描述
Arbitrary File Disclosure Vulnerability in Icinga Web 2 <2.8.6, <2.9.6, <2.10
介绍
# CVE-2022-24716
Arbitrary File Disclosure Vulnerability in Icinga Web 2 <2.8.6, <2.9.6, <2.10
Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. Unauthenticated users can leak the contents of files of the local system accessible to the web-server user, including `icingaweb2` configuration files with database credentials. This issue has been resolved in versions 2.9.6 and 2.10 of Icinga Web 2. Database credentials should be rotated.
## Clone & Usage
1. git clone https://github.com/doosec101/CVE-2022-24716.git
2. cd CVE-2022-24716
3. pip3 install -r requirements.txt
4. python3 CVE-2022-24716.py -u https://example.com -p /etc/passwd
#### Note:-
Recommend to put the path to /etc/passwd , So the script let you know if the given url is vulnerable or not
#### Dorks:-
- Shodan: http.title:"Icinga" , https://www.shodan.io/search?query=%22Icinga%22
- Google: intitle:"Icinga"
## POC:-
https://user-images.githubusercontent.com/128431701/227827785-938f038b-6d17-4a5d-81d9-8399a4b1ccd3.mp4
文件快照
[4.0K] /data/pocs/b73323aa6f40970e5600ee5d81a2beb63e10cd28
├── [ 807] CVE-2022-24716.py
├── [1.0K] README.md
└── [ 23] requirements.txt
0 directories, 3 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。