漏洞描述
Artica-Proxy administrative web application存在远程代码执行漏洞,此漏洞是程序在反序列化用户输入的PHP对象时缺乏校验导致的。
Artica-Proxy administrative web application CVE-2024-2054 远程代码执行漏洞
PoC代码
暂无相关漏洞推荐
- esafenet-cdgserver3-cdgrenewapplication-rce: 亿赛通电子文档系统 CDGRenewApplication RCE
- esafenet-cdgserver3-decryptapplicationservice1-rce: 亿赛通电子文档系统 DecryptApplicationService1 RCE
- MapProxy /demo 文件包含漏洞
- MapProxy存在本地文件包含漏洞
- POC CVE-2018-19458: PHP Proxy 3.0.3 - Local File Inclusion
- POC CVE-2019-17270: Yachtcontrol Webapplication 1.0 - Remote Command Injection
- POC CVE-2020-13158: Artica Proxy Community Edition <4.30.000000 - Local File Inclusion
- POC CVE-2020-13851: Artica Pandora FMS 7.44 - Remote Code Execution
- POC CVE-2020-17505: Artica Web Proxy 4.30 - OS Command Injection
- POC CVE-2020-17506: Artica Web Proxy 4.30 - Authentication Bypass/SQL Injection
- POC CVE-2020-8497: Artica Pandora FMS <=7.42 - Arbitrary File Read
- POC CVE-2021-40438: Apache <= 2.4.48 Mod_Proxy - Server-Side Request Forgery
- POC CVE-2022-37153: Artica Proxy 4.30.000000 - Cross-Site Scripting