mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-29 09:41:05 +00:00
29 lines
1.1 KiB
Markdown
29 lines
1.1 KiB
Markdown
|
### [CVE-2013-2249](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2249)
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
|
||
|
|
### Description
|
||
|
|
|
||
|
|
mod_session_dbd.c in the mod_session_dbd module in the Apache HTTP Server before 2.4.5 proceeds with save operations for a session without considering the dirty flag and the requirement for a new session ID, which has unspecified impact and remote attack vectors.
|
||
|
|
|
||
|
|
### POC
|
||
|
|
|
||
|
|
#### Reference
|
||
|
|
No PoCs from references.
|
||
|
|
|
||
|
|
#### Github
|
||
|
|
- https://github.com/ARPSyndicate/cvemon
|
||
|
|
- https://github.com/GiJ03/ReconScan
|
||
|
|
- https://github.com/Live-Hack-CVE/CVE-2013-2249
|
||
|
|
- https://github.com/RoliSoft/ReconScan
|
||
|
|
- https://github.com/SecureAxom/strike
|
||
|
|
- https://github.com/hrbrmstr/internetdb
|
||
|
|
- https://github.com/issdp/test
|
||
|
|
- https://github.com/matoweb/Enumeration-Script
|
||
|
|
- https://github.com/syadg123/pigat
|
||
|
|
- https://github.com/teamssix/pigat
|
||
|
|
- https://github.com/vshaliii/DC-1-Vulnhub-Walkthrough
|
||
|
|
- https://github.com/xxehacker/strike
|
||
|
|
|