CVE-2023-30253 PoC — Dolibarr 操作系统命令注入漏洞

Source

https://github.com/04Shivam/CVE-2023-30253-Exploit

Associated Vulnerability

Title:Dolibarr 操作系统命令注入漏洞 (CVE-2023-30253)
Description:Dolibarr是一个应用软件。一个现代软件包，可帮助管理您组织的活动。 Dolibarr 17.0.1之前版本存在安全漏洞，该漏洞源于可以通过大写操作远程执行代码。

Description

Poc for CVE-2023-30253

Readme

# CVE-2023-30253 Exploit
Dolibarr vulnerable to remote code execution via uppercase manipulation

Affected version <17.0.1

## Usage:

pip3 install -r requirements.txt

python3 CVE-2023-30253.py

File Snapshot


 [4.0K]  /data/pocs/bf17c78012507be05b4994b01a26249c51c195cc
├── [7.8K]  CVE-2023-30253.py
├── [ 195]  README.md
└── [  39]  requirements.txt

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!