CVE-2021-3019 PoC — Ffay Lanproxy 路径遍历漏洞

Source

https://github.com/givemefivw/CVE-2021-3019

Associated Vulnerability

Title:Ffay Lanproxy 路径遍历漏洞 (CVE-2021-3019)
Description:Ffay Lanproxy是Ffay个人开发者的一个可将局域网内服务代理到公网的内网穿透工具。 ffay lanproxy 0.1 存在路径遍历漏洞，该漏洞允许目录遍历读取/../conf/config.properties来获取到内部网连接的凭据。

Readme

# CVE-2021-3019
将ip添加进ip.txt文本，注意格式：
http://127.0.0.1
每行一个
打开Cheeetah，运行即可

File Snapshot


 [4.0K]  /data/pocs/fd5ff2655dae522a6957f74dc76cc53b9a1dbd0e
├── [ 708]  CVE-2021-3019.wker
└── [ 121]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!