POC详情: f8ba99ed59efda8a009c2bbe5d9b730d40e6fdbf

来源
https://github.com/ThatNotEasy/CVE-2023-27524
关联漏洞
标题: Apache Superset 安全漏洞 (CVE-2023-27524)
描述:Apache Superset是美国阿帕奇(Apache)基金会的一个数据可视化和数据探索平台。 Apache Superset 2.0.1版本及之前版本存在安全漏洞。攻击者利用该漏洞验证和访问未经授权的资源。
描述
Perform With Apache-SuperSet Leaked Token [CSRF]
介绍
## CVE-2023-27524
- Insecure Default Configuration in Apache Superset Leads to Remote Code Execution
## Screenshot
![Screenshot_5](https://user-images.githubusercontent.com/25004320/236394414-6a589e1b-2d74-4f00-a3e7-87467a90e01f.png)
## Requirements
- Python3.7+
## Supported Os
- Linuxer
- Wingays
## Get start with
```
$ git clone https://github.com/Pari-Malam/CVE-2023-27524
$ cd CVE-2023-27524
$ pip/pip3 install -r requirements.txt
$ python/python3 superset.py
```
## Footprints Notes
- By using this tool, you agree that you are using it for educational purposes only and that you will not use it for any illegal activity. You also agree to bear all risks associated with the use of this tool. I will not be responsible for direct or indirect damage caused by the use of this tool. Don't suyyyyyyyyyyyyyyyyyyyy me!
## Author
- Pari Malam
## Contacts
[![Telegram](https://img.shields.io/badge/-Telegram-blue)](https://telegram.me/SurpriseMTFK)
[![Discord](https://img.shields.io/badge/-Discord-purple)](https://discordapp.com/users/829404192585678858)
文件快照

 [4.0K]  /data/pocs/f8ba99ed59efda8a009c2bbe5d9b730d40e6fdbf
├── [1.0K]  README.md
├── [  59]  requirements.txt
├── [4.0K]  Results
│   └── [ 171]  Cookies.txt
└── [9.8K]  superset.py

1 directory, 4 files
神龙机器人已为您缓存
备注
    1. 建议优先通过来源进行访问。
    2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
    3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。