Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-31602 PoC — Hitachi Vantara Pentaho 授权问题漏洞

Source
https://github.com/chaitin/xray-plugins/blob/main/poc/manual/pentaho-cve-2021-31602-authentication-bypass.yml
Associated Vulnerability
Title:Hitachi Vantara Pentaho 授权问题漏洞 (CVE-2021-31602)
Description:Hitachi Pentaho是日本Hitachi公司的一款用于大数据环境中对数据进行存储和管理的服务。 Hitachi Vantara Pentaho 存在授权问题漏洞,该漏洞源于在 Hitachi Vantara Pentaho 通过 9.1 和 Pentaho Business Intelligence Server 通过 7.x 中发现了一个问题。安全模型具有不同的访问控制层。其中一层是 applicationContext 安全性,它在 applicationContext-spring-sec
Description
Pentaho-authentication-bypass
File Snapshot

 name: poc-yaml-pentaho-cve-2021-31602-authentication-bypass
manual: true
transport: http
rules:
    

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.