CVE-2024-29296 PoC — Portainer 安全漏洞

Source

https://github.com/Lavender-exe/CVE-2024-29296-PoC

Associated Vulnerability

Title:Portainer 安全漏洞 (CVE-2024-29296)
Description:Portainer是一款用于管理Docker环境和Docker主机的轻量级用户管理界面。 Portainer CE 2.19.4版本存在安全漏洞，该漏洞源于存在用户枚举漏洞，可能允许未经身份验证的远程用户确定用户名是否有效。

Description

User Enumeration through response time difference

Readme

# Portainer CVE-2024-29296 Proof of Concept Script

>[!important]
>Will be released once Portainer fixes it in update 2.22

## Requirements
`pip install -r requirements.txt`

## Usage

```bash
placeholder
```

## Credits

Reported by:
- https://github.com/ThaySolis/CVE-2024-29296

File Snapshot


 [4.0K]  /data/pocs/dbb180fbf70bc7735f42d7f20b0a286c814abaa0
├── [1.0K]  LICENSE
└── [ 281]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!