CVE-2024-0520 PoC — Mlflow 安全漏洞

Source

https://github.com/chan-068/CVE-2024-0520_try

Associated Vulnerability

Title:Mlflow 安全漏洞 (CVE-2024-0520)
Description:Mlflow是一个机器学习生命周期的开源平台。 Mlflow存在安全漏洞，该漏洞源于操作系统命令中使用的特殊元素未正确中和，从而导致攻击者能够利用路径遍历或绝对路径技术，实现任意文件写入。

File Snapshot


 [4.0K]  /data/pocs/f3282310707b1e67519148ae59eb2ac3be8385fc
└── [  26]  malicious.csv

0 directories, 1 file

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.