漏洞描述
Cobbler存在不正确的访问控制漏洞,此漏洞是由于程序在包含cobbler_api接口在内的多个接口上未充分验证用户的身份所导致的。
Cobbler 不正确的访问控制漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2018-1000226: Cobbler - Authentication Bypass
- POC CVE-2021-40323: Cobbler <3.3.0 - Remote Code Execution
- POC CVE-2024-47533: Cobbler 'XML-RPC' - Authentication Bypass
- POC CNVD-2018-16876: Cobbler 任意文件读取漏洞
- POC cobbler-default-login: Cobbler Default Login
- POC cobbler-exposed-directory: Exposed Cobbler Directories
- POC cobbler-default-login: Cobbler Default Login
- POC cobbler-exposed-directory: Exposed Cobbler Directories
- POC cobbler-webgui: Cobbler WebGUI Detection
- Cobbler get_shared_secret 未授权 身份验证缺陷漏洞
- Cobbler cobbler_api 存在代码注入漏洞(CVE-2021-40323)