CVE-2020-12078 PoC — Opmantek Open-AudIT 注入漏洞

Source

https://github.com/84KaliPleXon3/CVE-2020-12078

Associated Vulnerability

Title:Opmantek Open-AudIT 注入漏洞 (CVE-2020-12078)
Description:Opmantek Open-AudIT是美国Opmantek公司的一款开源的网络发现和审计程序。该程序能够智能扫描网络和网络设备，并提供状态报告。 Open-AudIT 3.3.1版本中存在安全漏洞。攻击者可借助open-audit/configuration/ URI利用该漏洞注入shell元字符，执行命令。

Readme

# CVE-2020-12078
The official exploit for Open-AudIT v3.3.1 Remote Code Execution CVE-2020-12078
![exploit image](openAudIT.png)

File Snapshot


 [4.0K]  /data/pocs/e0ab9b24170d19fb056b2b01d2fcedfe2aaf83b0
├── [924K]  openAudIT.png
├── [4.5K]  OpenAudIT-postauth-rce.py
└── [ 129]  README.md

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!