cve-2021-42013

There are 14 repositories under cve-2021-42013 topic.

  • CLincat/vulcat

    vulcat可用于扫描Web端常见的CVE、CNVD等编号的漏洞,发现漏洞时会返回Payload信息。部分漏洞还支持命令行交互模式,可以持续利用漏洞

    Language:Python1225517
  • MrCl0wnLab/SimplesApachePathTraversal

    Tool check: CVE-2021-41773, CVE-2021-42013, CVE-2020-17519

    Language:Python602015
  • im-hanzou/apachrot

    Apache (Linux) CVE-2021-41773/2021-42013 Mass Vulnerability Checker

    Language:Shell21106
  • wangfly-me/Apache_Penetration_Tool

    CVE-2021-41773&CVE-2021-42013图形化漏洞检测利用工具

  • battleoverflow/apache-traversal

    This exploit is based on a few CVE vulnerabilities affecting Apache 2.4.49. We use URL-encoded characters to access certain files or otherwise restricted resources on the server. Possible RCE on certain systems as well.

    Language:Python13102
  • asaotomo/CVE-2021-42013-Apache-RCE-Poc-Exp

    Apache 远程代码执行 (CVE-2021-42013)批量检测工具:Apache HTTP Server是美国阿帕奇(Apache)基金会的一款开源网页服务器。该服务器具有快速、可靠且可通过简单的API进行扩充的特点,发现 Apache HTTP Server 2.4.50 中针对 CVE-2021-41773 的修复不够充分。攻击者可以使用路径遍历攻击将 URL 映射到由类似别名的指令配置的目录之外的文件。如果这些目录之外的文件不受通常的默认配置“要求全部拒绝”的保护,则这些请求可能会成功。如果还为这些别名路径启用了 CGI 脚本,则这可能允许远程代码执行。此问题仅影响 Apache 2.4.49 和 Apache 2.4.50,而不影响更早版本。

    Language:Python10102
  • CalfCrusher/Path-traversal-RCE-Apache-2.4.49-2.4.50-Exploit

    CVE-2021-41773 | CVE-2021-42013 Exploit Tool (Apache/2.4.49-2.4.50)

    Language:Python9102
  • sergiovks/LFI-RCE-Unauthenticated-Apache-2.4.49-2.4.50

    LFI / RCE Unauthenticated - Apache 2.4.49 & 2.4.50

    Language:Python6100
  • twseptian/cve-2021-42013-docker-lab

    Docker container lab to play/learn with CVE-2021-42013

    Language:Python2205
  • zerodaywolf/CVE-2021-41773_42013

    Lab setup for CVE-2021-41773 (Apache httpd 2.4.49) and CVE-2021-42013 (Apache httpd 2.4.50).

    Language:Dockerfile2102
  • mauricelambert/CVE-2021-42013

    These Nmap, Python and Ruby scripts detects and exploits CVE-2021-42013 with RCE and local file disclosure.

    Language:Ruby1101
  • Zyx2440/Apache-HTTP-Server-2.4.50-RCE

    Apache-HTTP-Server-2.4.50-RCE This tool is designed to test Apache servers for the CVE-2021-41773 / CVE-2021-42013 vulnerability. It is intended for educational purposes only and should be used responsibly on systems you have explicit permission to test.

    Language:Python1
  • 12345qwert123456/CVE-2021-42013

    Vulnerable configuration Apache HTTP Server version 2.4.49/2.4.50

    Language:Dockerfile0100