Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-53991 PoC — Discourse 信息泄露漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2024/CVE-2024-53991.yaml
Associated Vulnerability
Title:Discourse 信息泄露漏洞 (CVE-2024-53991)
Description:Discourse是Discourse开源的一套开源的社区讨论平台。该平台包括社区、电子邮件和聊天室等功能。 Discourse存在信息泄露漏洞,该漏洞源于使用FileStore::LocalStore存储上传和备份文件在本地磁盘时,如果攻击者知道备份文件名,可以通过特殊请求获取这些文件。
Description
Discourse is an open source platform for community discussion. This vulnerability only impacts Discourse instances configured to use `FileStore--LocalStore` which means uploads and backups are stored locally on disk. If an attacker knows the name of the Discourse backup file, the attacker can trick nginx into sending the Discourse backup file with a well crafted request.
File Snapshot

 id: CVE-2024-53991

info:
  name: Discourse Backup File Disclosure Via Default Nginx Configuration
 

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.