CVE-2010-2861 PoC — Adobe ColdFusion管理控制台多个目录遍历漏洞

Source

https://github.com/greysneakthief/14641-v2

Associated Vulnerability

Title:Adobe ColdFusion管理控制台多个目录遍历漏洞 (CVE-2010-2861)
Description:Adobe ColdFusion是一款高效的网络应用服务器开发环境。 Adobe ColdFusion 9.0.1及之前版本的管理控制台中存在多个目录遍历漏洞。远程攻击者可借助向CFIDE/administrator/中的CFIDE/administrator/settings/mappings.cfm，logging/settings.cfm，datasources/index.cfm，j2eepackaging/editarchive.cfm和enter.cfm发送的locale参数读取任意文件。

Description

Redux Python3 Version of CVE-2010-2861

Readme

# CVE-2010-2861
## 14641-v2
I was annoyed that only a python2 version of this classic exploit is available.

File Snapshot


 [4.0K]  /data/pocs/f54b321930541723a549b1411cf729efddeca209
├── [3.1K]  14641-v2.py
└── [ 108]  README.md

1 directory, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!