CVE-2021-21307 PoC — Lucee Server 授权问题漏洞

Source

https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-21307.yaml

Associated Vulnerability

Title:Lucee Server 授权问题漏洞 (CVE-2021-21307)
Description:Lucee Server中存在授权问题漏洞，该漏洞源于网络系统或产品中缺少身份验证措施或身份验证强度不足。

Description

Lucee Admin before versions 5.3.7.47, 5.3.6.68 or 5.3.5.96 contains an unauthenticated remote code execution vulnerability.

File Snapshot


 id: CVE-2021-21307

info:
  name: Lucee Admin - Remote Code Execution
  author: dhiyaneshDk
  severi

...

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.