漏洞描述
Ivanti Pulse Connect Secure VPN 是一种广泛应用于企业网络的 VPN 解决方案。该漏洞存在于 /dana-na/auth/saml-sso.cgi 接口中,攻击者可以通过发送特制的 SAML 请求,利用 XML 实体注入漏洞,发起服务端请求伪造(SSRF)攻击,可能导致敏感信息泄露或进一步的攻击。
Ivanti Pulse Connect Secure VPN /dana-na/auth/saml-sso.cgi XML 外部实体注入漏洞(CVE-2024-22024)
PoC代码
暂无相关漏洞推荐
- KINGOSOFT高校智慧校园教学综合服务平台 /jw/lessonchangeapply/jwComFileDownload.action 文件读取漏洞
- (CVE-2025-62712) JumpServer ConnectionToken 权限验证不当漏洞
- Cisco Secure Firewall Adaptive Security Appliance 缓冲区溢出漏洞
- CVE-2019-11510: Pulse Connect Secure SSL VPN Arbitrary File Read
- dahua-sso-initsession-action-create-user: 大华智慧园区综合管理平台远程代码执行漏洞
- WordPress InstaWP Connect 插件 / rest_route 文件上传漏洞(CVE-2024-2667)
- Oracle PeopleSoft /PSIGW/PeopleSoftServiceListeningConnector XML 外部实体注入漏洞(CVE-2017-3548)
- WSO2 API Manager /carbon/generic/save_artifact_ajaxprocessor.jsp XML 外部实体注入漏洞(CVE-2020-24589)
- Cisco Secure Firewall Management Center和Cisco Secure Firewall Threat Defense 操作系统命令注入漏洞
- POC CVE-2025-22457: Ivanti Connect Secure - Stack-based Buffer Overflow
- POC CVE-2015-2166: Ericsson Drutt MSDP - Local File Inclusion
- POC CVE-2016-10960: WordPress wSecure Lite < 2.4 - Remote Code Execution
- POC CVE-2017-17043: WordPress Emag Marketplace Connector 1.0 - Cross-Site Scripting