/CVE-2023-32315

Perform With Massive Openfire Unauthenticated Users

Primary LanguagePython

CVE-2023-32315

  • Openfire's administrative console (the Admin Console), a web-based application, was found to be vulnerable to a path traversal attack via the setup environment. This permitted an unauthenticated user to use the unauthenticated Openfire Setup Environmentin an already configured Openfire environment to access restricted pages in the Openfire Admin Console reserved for administrative users and it can lead to RCE

Screenshot

Screenshot_6 Screenshot_7

Requirements

  • Python3.7+

Supported Os

  • Linuxer
  • Wingays

Get start with

$ git clone https://github.com/Pari-Malam/CVE-2023-32315
$ cd CVE-2023-32315
$ pip/pip3 install -r requirements.txt
$ python/python3 CVE-2023-32315.py

Footprints Notes

  • By using this tool, you agree that you are using it for educational purposes only and that you will not use it for any illegal activity. You also agree to bear all risks associated with the use of this tool. I will not be responsible for direct or indirect damage caused by the use of this tool. Don't suyyyyyyyyyyyyyyyyyyyy me!

Author

  • Pari Malam

Contacts

Telegram Discord