漏洞描述
Hasura GraphQL Engine是Hasura开源的一个非常快速的 GraphQL 服务器。Hasura GraphQL Engine存在远程命令执行漏洞。
Hasura GraphQL Engine 存在远程命令执行漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2022-36923: Zoho ManageEngine - getUserAPIKey Authentication Bypass
- WordPress AI Engine /wp-json/mcp/v1 信息泄露漏洞(CVE-2025-11749)
- POC CVE-2021-37415: Zoho ManageEngine ServiceDesk Plus - Authentication Bypass
- POC CVE-2022-29081: Zoho ManageEngine - Access Control Bypass
- POC CVE-2025-11749: WordPress AI Engine Plugin - Token Exposure
- GitLab CE/EE GraphQL 身份验证缺陷漏洞
- Docker Desktop Engine API 未授权访问漏洞
- POC CVE-2008-7269: UC Gateway Investment SiteEngine v5.0 - Open Redirect
- POC CVE-2012-4889: ManageEngine Firewall Analyzer 7.2 - Cross-Site Scripting
- POC CVE-2015-7780: ManageEngine Firewall Analyzer <8.0 - Local File Inclusion
- POC CVE-2016-7834: Sony IPELA Engine IP Camera - Hardcoded Account
- POC CVE-2017-11512: ManageEngine ServiceDesk 9.3.9328 - Arbitrary File Retrieval
- POC CVE-2018-17283: Zoho ManageEngine OpManager - SQL Injection