漏洞描述
HP LoadRunner是美国惠普(HP)公司的一套性能负载测试工具。该工具可通过系统监控和用户监控功能以及大量分析组件对应用的性能进行测试,检测并有效隔离性能瓶颈。 HP LoadRunner 11.52之前的版本中的Virtual User Generator工具中存在安全漏洞。远程攻击者可利用该漏洞执行任意代码。
HP LoadRunner Virtual User Generator 远程代码执行漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2015-2863: Kaseya Virtual System Administrator - Open Redirect
- POC CVE-2021-25052: WordPress Button Generator <2.3.3 - Remote File Inclusion
- POC CVE-2021-44848: Thinfinity VirtualUI User Enumeration
- POC CVE-2022-0346: WordPress XML Sitemap Generator for Google <2.0.4 - Cross-Site Scripting/Remote Code Execution
- POC CVE-2022-4321: PDF Generator for WordPress < 1.1.2 - Cross Site Scripting
- POC CVE-2023-1780: Companion Sitemap Generator < 4.5.3 - Cross-Site Scripting
- POC CVE-2023-37988: Contact Form Generator <= 2.5.5 - Cross-Site Scripting
- POC CVE-2024-35219: OpenAPI Generator <= 7.5.0 - Arbitrary File Read/Delete
- POC CVE-2024-9935: PDF Generator Addon for Elementor Page Builder <= 1.7.5 - Arbitrary File Download
- POC CVE-2023-47873: WordPress WP Child Theme Generator < 1.1.3 - Arbitrary File Upload
- POC azure-vm-deallocate-unalerted: Azure Virtual Machine Deallocate Alert Not Configured
- POC azure-vm-delete-unalerted: Azure Virtual Machine Delete Alert Not Configured
- POC azure-vm-poweroff-unalerted: Azure Virtual Machine Power Off Alert Not Configured