AUTOMATIC1111 SD-WebUI /proxy 存在服务端请求伪造漏洞
PoC代码
暂无相关漏洞推荐
- nginxWebUI cmdOver 远程命令执行漏洞
- LobeChat /api/proxy 服务器端请求伪造漏洞(CVE-2024-32964)
- POC CVE-2023-39141: Aria2 WebUI - Path traversal
- POC CVE-2024-4841: LoLLMS WebUI - Subfolder Prediction via Path Traversal
- POC spark-webui-unauth: Spark WebUI Unauthenticated
- POC nginxwebui-admin-bypass: NginxWebUI admin认证绕过(全版本通杀)
- POC wiren-board-webui: Wiren Board WebUI Panel - Detect
- POC spark-webui-unauth: Unauthenticated Spark WebUI
- POC nginx-webui-rce: nginxWebUI ≤ 3.5.0 - Remote Command Execution
- POC nginxwebui-runcmd-rce: nginxWebUI ≤ 3.5.0 runCmd - Remote Command Execution
- POC webui-rce: WebUI 1.5b6 - Remote Code Execution
- AUTOMATIC1111 SD-WebUI /file 未授权 路径遍历漏洞
- Aria2 WebUI控制台 /../../../../etc/passwd 文件读取漏洞(CVE-2023-39141)