admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-06-20 09:50:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

add : CVE-2022-24706

Browse Source
This commit is contained in:
gaopeng2 2022-05-20 12:22:32 +08:00
parent cce0d2a201
commit 0816c43078
2 changed files with 10 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

BIN
Apache CouchDB/CVE-2022-24706/Apache_CouchDB_Unauthenticated_Remote_Code_Execution_Vulnerability.gif Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 663 KiB

10
Apache CouchDB/CVE-2022-24706/README.md Normal file
View File

@ -0,0 +1,10 @@
# Apache CouchDB Unauthenticated Remote Code Execution Vulnerability (CVE-2022-24706)
Apache CouchDB is a document-oriented database system developed by the Apache Foundation using Erlang.An access control error vulnerability existed prior to Apache CouchDB 3.2.2 that stemmed from the ability of an attacker to access an incorrect default installation and gain administrator privileges without authenticating.
FOFA **query rule**: [banner="name couchdb at"](https://fofa.info/result?qbase64=YmFubmVyPSJuYW1lIGNvdWNoZGIgYXQi)
# Demo
![Apache_CouchDB_Unauthenticated_Remote_Code_Execution_Vulnerability](Apache_CouchDB_Unauthenticated_Remote_Code_Execution_Vulnerability.gif)