漏洞描述
kafka-ui 项目是由 Provectus 公司开发和维护的,旨在为 Kafka 用户提供一个可视化管理工具,简化 Kafka 集群的管理和监控任务。kafka-ui 在 /api/clusters/local/topics/{topic}/messages 的 q 参数中存在远程代码执行漏洞,攻击者可通过该漏洞在服务器端任意执行代码,写入后门,获取服务器权限,进而控制整个web服务器。
kafka-ui messages 远程代码执行漏洞(CVE-2023-52251)
PoC代码
暂无相关漏洞推荐
- yonyou-nc-ncmessageservlet-rce: Yonyou NC messages servlet RCE
- POC CVE-2023-52251: Kafka UI 0.7.1 Command Injection
- POC CVE-2023-25194: Apache Druid kafka RCE 漏洞
- POC kafka-center-default-password: Apache Kafka Center Default Password
- POC gcloud-pg-log-min-messages-flag-not-configured: Log Min Messages Flag Not Configured Properly for PostgreSQL Instances
- POC suspicious-sql-error-messages: SQL - Error Messages
- POC kafka-center-default-login: Apache Kafka Center Default Login
- POC kafka-manager-unauth: Kafka Manager Panel - Unauthorized Access
- POC kafka-cruise-control: Kafka Cruise Control UI
- POC unauth-apache-kafka-ui: Apache Kafka - Unauthorized UI Exposure
- POC yonyou-nc-ncmessageservlet-rce: UFIDA NC NCMessageServlet - Deserialization RCE Detection
- Provectus Kafka-ui CVE-2023-52251 远程代码执行漏洞