cve/CVE-2024-41570.md at 93476d6c370e261fdc1b2b03a08066de45e4892d

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-11-28 18:48:49 +00:00

0xMarcio 1fb02038e8 Update CVE sources 2025-09-29 16:08

2025-09-29 16:08:36 +00:00

1.1 KiB

Raw Blame History

CVE-2024-41570

Description

An Unauthenticated Server-Side Request Forgery (SSRF) in demon callback handling in Havoc 2 0.7 allows attackers to send arbitrary network traffic originating from the team server.

POC

Reference

https://blog.chebuya.com/posts/server-side-request-forgery-on-havoc-c2/

Github

https://github.com/EndermanSUPREME/Havoc-C2-SSRF-to-RCE-POC
https://github.com/HimmeL-Byte/CVE-2024-41570-SSRF-RCE
https://github.com/Michael-Meade/Links-Repository
https://github.com/Nicolas-Arsenault/Havoc-C2-RCE-2024
https://github.com/chebuya/Havoc-C2-SSRF-poc
https://github.com/dxlerYT/Havoc-C2-RCE-2024
https://github.com/kit4py/CVE-2024-41570
https://github.com/nomi-sec/PoC-in-GitHub
https://github.com/sebr-dev/Havoc-C2-SSRF-to-RCE
https://github.com/thisisveryfunny/CVE-2024-41570-Havoc-C2-RCE

1.1 KiB Raw Blame History

CVE-2024-41570

Description

POC

Reference

Github

1.1 KiB

Raw Blame History