关联漏洞
标题:
Apache Druid 访问控制错误漏洞
(CVE-2021-25646)
描述:Apache Druid是美国阿帕奇软件(Apache)基金会的一款使用Java语言编写的、面向列的开源分布式数据库。 Apache Druid 0.20.0和更早的版本存在访问控制错误漏洞,该漏洞允许经过身份验证的用户强制Druid运行用户提供的JavaScript代码,并执行服务器进程特权的代码。
描述
Exploit for Apache Druid Embedded Javascript Remote Code Execution (CVE-2021-25646), Python.
介绍
# Apache Druid RCE Exploit (CVE-2021-25646)
Python exploit for Apache Druid Remote Code Execution via JavaScript code injection (CVE-2021-25646).
## Description
This script exploits an RCE vulnerability in Apache Druid (versions < 0.20.1) that allows arbitrary code execution through specially crafted sampler requests.
## Usage
```bash
python3 druid_rce.py -u http://target:8888 -c "command_to_execute"
```
### Arguments
- `-u/--url` - Target URL (e.g., `http://vulnerable-host:8888`)
- `-c/--command` - Command to execute on target system
## Example
```bash
python3 druid_rce.py -u http://192.168.1.100:8888 -c "id"
```
## Requirements
- Python 3.x
- `requests` library (`pip install requests`)
## Disclaimer
This tool is for **educational and authorized penetration testing purposes only**. Never use it against systems without explicit permission. The author is not responsible for any misuse.
P.S. Author: Коротков Виталий Константинович.
文件快照
[4.0K] /data/pocs/f62792bd2b8ea5126db9230f0d08c45357630c20
├── [3.6K] druid_rce.py
└── [ 986] README.md
0 directories, 2 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。