admin/GobyVuls
1
0
Fork 0
mirror of https://github.com/gobysec/GobyVuls.git synced 2025-06-20 09:50:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add CNVD-2021-15573

Browse Source
This commit is contained in:
xiaoheihei1107 2021-09-24 17:54:47 +08:00 committed by GitHub
parent d4f2535a81
commit e11443ec2f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 9 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
Chemex/CNVD-2021-15573/README.md Normal file
View File

@ -0,0 +1,9 @@
# Chemex Auth File Upload CNVD-2021-15573
Coffee pot Chemex is a free, open source, efficient and beautiful IT operation and maintenance management platform. Chemex has a background file upload vulnerability(default login admin:admin), which can be exploited by attackers to gain control of the server.
FOFA **query rule**: [(title="咖啡壶" || body="让IT资产管理更加简单") && body="CreateDcat"](https://fofa.so/result?qbase64=KHRpdGxlPSLlkpbllaHlo7YiIHx8IGJvZHk9IuiuqUlU6LWE5Lqn566h55CG5pu05Yqg566A5Y2VIikgJiYgYm9keT0iQ3JlYXRlRGNhdCI%3D)
# Demo
![Chemex_Auth_File_Upload_CNVD_2021_15573](Chemex_Auth_File_Upload_CNVD_2021_15573.gif)