CVE-2024-39210 PoC — Best House Rental Management System 安全漏洞

Source

https://github.com/KRookieSec/CVE-2024-39210

Associated Vulnerability

Title:Best House Rental Management System 安全漏洞 (CVE-2024-39210)
Description:Best House Rental Management System是Mayuri K.个人开发者的一个房屋租赁管理系统。 Best House Rental Management System 1.0版本存在安全漏洞，该漏洞源于包含通过参数进行的任意文件读取问题。攻击者可以读取任意PHP文件并访问应用程序内的其他敏感信息。

Description

Best house rental management system Local file contains vulnerability

Readme

**[CVE ID]**

CVE-2024-39210

**[PRODUCT]**

Best house rental management system

**[VERSION]**

<=1.0

**[PROBLEM TYPE]**

Incorrect Access Control

**[Description]**

Best House Rental Management System v1.0 was discovered to contain an arbitrary file read vulnerability via the Page parameter at index.php. This vulnerability allows attackers to read arbitrary PHP files and access other sensitive information within the application.

File Snapshot


 [4.0K]  /data/pocs/d3a37e95b3c1889cfd7bededc867856514b9b352
└── [ 436]  README.md

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!