jupyter-ipython-unauth: Jupyter ipython - Authorization Bypass

漏洞描述

PoC代码[已公开]

id: jupyter-ipython-unauth

info:
  name: Jupyter ipython - Authorization Bypass
  author: pentest_swissky
  severity: critical
  description: Jupyter was able to be accessed without authentication.
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
    cvss-score: 10
    cwe-id: CWE-288
  metadata:
    max-request: 1
  tags: unauth,jupyter,misconfig,vuln

http:
  - method: GET
    path:
      - "{{BaseURL}}/ipython/tree"

    matchers-condition: and
    matchers:
      - type: status
        status:
          - 200

      - type: word
        words:
          - ipython/static/components
          - ipython/kernelspecs
        part: body
# digest: 4b0a00483046022100cb88cb01f9d04ce2bedf371989c33d0e869e1faae8cc63ab66dc8b5efbfe1d4002210090426476e6181237f132782722fdb7564521586a9d7797627bfac7049d6700d8:922c64590222798bb761d5b6d8e72950

相关漏洞推荐

• POC CVE-2020-20627: GiveWP - Missing Authorization to Settings Update
• POC CVE-2021-37415: Zoho ManageEngine ServiceDesk Plus - Authentication Bypass
• POC CVE-2021-4073: RegistrationMagic <= 5.0.1.7 - Authentication Bypass
• POC CVE-2023-37999: HT Mega – Absolute Addons for Elementor <= 2.2.0 - Missing Authorization to Privilege Escalation
• POC CVE-2023-45038: QNAP Music Station < 5.4.0 - Authentication Bypass
• POC CVE-2023-2734: MStore API <= 3.9.1 - Authentication Bypass
• POC CVE-2025-10204: AC Smart II - Authentication Bypass
• POC nginx-status-403-bypass: Nginx Status Page - 403 Bypass
• POC CVE-2019-19825: TOTOLINK/Realtek Routers - CAPTCHA Bypass
• POC CVE-2022-29081: Zoho ManageEngine - Access Control Bypass
• POC CVE-2025-49706: Microsoft SharePoint Server - Authentication Bypass
• POC CVE-2025-61757: Oracle Identity Manager REST WebServices - Authentication Bypass
• POC CVE-2025-9316: N-central - Authentication Bypass