POC详情: 8adf9e4141747489756a2b5199b16d1e1c3c60c6

来源
https://github.com/antoinenguyen-09/CVE-2022-35649
关联漏洞
标题: Moodle 输入验证错误漏洞 (CVE-2022-35649)
描述:Moodle是一套免费、开源的电子学习软件平台,也称课程管理系统、学习管理系统或虚拟学习环境。 Moodle 存在输入验证错误漏洞,该漏洞源于输入验证不当,远程攻击者利用该漏洞可以向应用程序传递特殊设计的数据,并执行任意代码。
描述
Payload Generator and Detailed Analysis about CVE-2022-35649
介绍
# CVE-2022-35649

### Payload Generator (using Python 2) and Detailed Analysis for [CVE-2022-35649](https://nvd.nist.gov/vuln/detail/CVE-2022-35649)

### The PoC in python generates payload when exploited for a 0-day of GhostScript 9.50. This 0-day exploit affect to ImageMagick with the default settings from Ubuntu repository (Tested with default settings of ImageMagick on Ubuntu 20.04).

### This project is created only for educational purposes and cannot be used for law violation or personal gain.

### The author of this project is not responsible for any possible harm caused by the materials of this project.

### Read detailed analysis [here](https://antoinenguyen-09.hashnode.dev/cve-2022-35649-1-click-rce-in-moodle-v401).
文件快照

 [4.0K]  /data/pocs/8adf9e4141747489756a2b5199b16d1e1c3c60c6
├── [ 509]  payload_gen.py
└── [ 736]  README.md

0 directories, 2 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。