POC详情: e2c35eb5920fb998a65526bcade140623ed2a507

来源
https://github.com/Hamibubu/CVE-2023-48084
关联漏洞
标题: Nagios XI 安全漏洞 (CVE-2023-48084)
描述:Nagios XI是美国Nagios公司的一套IT基础设施监控解决方案。该方案支持对应用、服务、操作系统等进行监控和预警。 Nagios XI 5.11.3之前版本存在安全漏洞,该漏洞源于存在SQL注入漏洞。
描述
Python program to dump all the databases, exploiting NagiosXI sqli vulnerability
介绍
# CVE-2023-48084

Python exploit for the CVE-2023-48084 -> `Nagios XI before version 5.11.3 was discovered to contain a SQL injection vulnerability via the bulk modification tool.`

The exploit uses `/admin/banner_message-ajaxhelper.php?action=acknowledge_banner_message&id=(<SQL COMMAND TO EXECUTE>)` to execute SQL queries, and exploits a blind SQL injection...


## Usage

Clone the repo and install the requirements.txt

```bash
git clone https://github.com/Hamibubu/CVE-2023-48084.git
cd CVE-2023-48084
pip install -r requirements.txt
```
Now execute the program, you need a non-admin session cookie, or an API token, example

```bash
python3 CVE-2023-48084.py --url https://monitored.htb/nagiosxi -a <token>
python3 CVE-2023-48084.py --url https://monitored.htb/nagiosxi -c <cookie>
```

## NOTE

For default it will try to dump all the database starting from schemas, if you want it more fast, just look at the code and take the part that you need
文件快照

 [4.0K]  /data/pocs/e2c35eb5920fb998a65526bcade140623ed2a507
├── [ 10K]  CVE-2023-48084.py
├── [ 955]  README.md
└── [  17]  requirements.txt

0 directories, 3 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。