漏洞描述
Splunk 是一款顶级的日志分析软件。2023年8月,官方发布安全更新,披露其存在后台远程代码执行漏洞,攻击者可利用 External Lookups 构造恶意请求执行任意代码控制服务器。
Splunk External Lookups 远程代码执行漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2025-58360: GeoServer - XML External Entity Injection
- POC CVE-2025-11700: N-central - XML External Entities Injection
- POC CVE-2018-11409: Splunk <=7.0.1 - Information Disclosure
- POC CVE-2018-2392: SAP Internet Graphics Server (IGS) - XML External Entity Injection
- POC CVE-2019-2616: Oracle Business Intelligence/XML Publisher - XML External Entity Injection
- POC CVE-2019-2767: Oracle Business Intelligence Publisher - XML External Entity Injection
- POC CVE-2019-8086: Adobe Experience Manager - XML External Entity Injection
- POC CVE-2019-9670: Synacor Zimbra Collaboration <8.7.11p10 - XML External Entity Injection
- POC CVE-2019-9757: LabKey Server 19.1.0 - XML External Entity (XXE)
- POC CVE-2020-24589: WSO2 API Manager <=3.1.0 - Blind XML External Entity Injection
- POC CVE-2020-4463: IBM Maximo Asset Management Information Disclosure - XML External Entity Injection
- POC CVE-2021-27931: LumisXP <10.0.0 - Blind XML External Entity Attack
- POC CVE-2022-1398: External Media without Import <=1.1.2 - Authenticated Blind Server-Side Request Forgery