2021-10-07 23:13:16 +02:00
|
|
|
|
[
|
|
|
|
|
{
|
|
|
|
|
"id": 414715774,
|
|
|
|
|
"name": "apache-exploit-CVE-2021-42013",
|
|
|
|
|
"full_name": "andrea-mattioli\/apache-exploit-CVE-2021-42013",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "andrea-mattioli",
|
|
|
|
|
"id": 5707570,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/5707570?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/andrea-mattioli"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/andrea-mattioli\/apache-exploit-CVE-2021-42013",
|
|
|
|
|
"description": "Exploit with integrated shodan search",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2021-10-07T18:31:29Z",
|
2021-10-20 23:12:55 +02:00
|
|
|
|
"updated_at": "2021-10-20T16:20:47Z",
|
2021-10-08 17:13:03 +02:00
|
|
|
|
"pushed_at": "2021-10-08T13:18:55Z",
|
2021-10-20 23:12:55 +02:00
|
|
|
|
"stargazers_count": 9,
|
|
|
|
|
"watchers_count": 9,
|
2021-10-21 17:17:42 +02:00
|
|
|
|
"forks_count": 5,
|
2021-10-07 23:13:16 +02:00
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
2021-10-21 17:17:42 +02:00
|
|
|
|
"forks": 5,
|
2021-10-20 23:12:55 +02:00
|
|
|
|
"watchers": 9,
|
2021-10-08 11:13:11 +02:00
|
|
|
|
"score": 0
|
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 414860866,
|
|
|
|
|
"name": "cve-2021-42013",
|
|
|
|
|
"full_name": "Vulnmachines\/cve-2021-42013",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "Vulnmachines",
|
|
|
|
|
"id": 79006904,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/79006904?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/Vulnmachines"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/Vulnmachines\/cve-2021-42013",
|
|
|
|
|
"description": "Apache 2.4.50 Path traversal vulnerability",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2021-10-08T05:44:54Z",
|
2021-12-11 01:13:08 +01:00
|
|
|
|
"updated_at": "2021-12-10T18:13:58Z",
|
2021-11-27 01:14:08 +01:00
|
|
|
|
"pushed_at": "2021-11-26T20:23:30Z",
|
2021-12-11 01:13:08 +01:00
|
|
|
|
"stargazers_count": 14,
|
|
|
|
|
"watchers_count": 14,
|
2021-12-08 07:13:14 +01:00
|
|
|
|
"forks_count": 1,
|
2021-10-08 11:13:11 +02:00
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
2021-12-08 07:13:14 +01:00
|
|
|
|
"forks": 1,
|
2021-12-11 01:13:08 +01:00
|
|
|
|
"watchers": 14,
|
2021-10-07 23:13:16 +02:00
|
|
|
|
"score": 0
|
2021-10-14 23:12:53 +02:00
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 417233035,
|
2021-10-17 11:12:40 +02:00
|
|
|
|
"name": "CVE-2021-42013-Docker-Lab",
|
|
|
|
|
"full_name": "twseptian\/CVE-2021-42013-Docker-Lab",
|
2021-10-14 23:12:53 +02:00
|
|
|
|
"owner": {
|
|
|
|
|
"login": "twseptian",
|
|
|
|
|
"id": 9025301,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/9025301?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/twseptian"
|
|
|
|
|
},
|
2021-10-17 11:12:40 +02:00
|
|
|
|
"html_url": "https:\/\/github.com\/twseptian\/CVE-2021-42013-Docker-Lab",
|
2021-10-14 23:12:53 +02:00
|
|
|
|
"description": "Docker container lab to play\/learn with CVE-2021-42013",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2021-10-14T18:00:48Z",
|
2021-10-17 11:12:40 +02:00
|
|
|
|
"updated_at": "2021-10-17T09:07:40Z",
|
2021-10-14 23:12:53 +02:00
|
|
|
|
"pushed_at": "2021-10-14T18:16:11Z",
|
|
|
|
|
"stargazers_count": 0,
|
|
|
|
|
"watchers_count": 0,
|
2021-10-15 05:12:58 +02:00
|
|
|
|
"forks_count": 1,
|
2021-10-14 23:12:53 +02:00
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [
|
|
|
|
|
"cve-2021-42013",
|
|
|
|
|
"dockerfile"
|
|
|
|
|
],
|
|
|
|
|
"visibility": "public",
|
2021-10-15 05:12:58 +02:00
|
|
|
|
"forks": 1,
|
2021-10-14 23:12:53 +02:00
|
|
|
|
"watchers": 0,
|
|
|
|
|
"score": 0
|
2021-10-20 23:12:55 +02:00
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 419389200,
|
|
|
|
|
"name": "CVE-2021-42013",
|
2021-10-21 17:17:42 +02:00
|
|
|
|
"full_name": "LayarKacaSiber\/CVE-2021-42013",
|
2021-10-20 23:12:55 +02:00
|
|
|
|
"owner": {
|
2021-10-21 17:17:42 +02:00
|
|
|
|
"login": "LayarKacaSiber",
|
2021-10-20 23:12:55 +02:00
|
|
|
|
"id": 92864439,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/92864439?v=4",
|
2021-10-21 17:17:42 +02:00
|
|
|
|
"html_url": "https:\/\/github.com\/LayarKacaSiber"
|
2021-10-20 23:12:55 +02:00
|
|
|
|
},
|
2021-10-21 17:17:42 +02:00
|
|
|
|
"html_url": "https:\/\/github.com\/LayarKacaSiber\/CVE-2021-42013",
|
2021-10-20 23:12:55 +02:00
|
|
|
|
"description": null,
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2021-10-20T15:32:39Z",
|
2021-10-23 17:14:20 +02:00
|
|
|
|
"updated_at": "2021-10-23T13:16:56Z",
|
|
|
|
|
"pushed_at": "2021-10-23T13:16:53Z",
|
2021-10-20 23:12:55 +02:00
|
|
|
|
"stargazers_count": 0,
|
|
|
|
|
"watchers_count": 0,
|
|
|
|
|
"forks_count": 0,
|
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
|
|
|
|
"forks": 0,
|
|
|
|
|
"watchers": 0,
|
|
|
|
|
"score": 0
|
2021-10-24 05:14:30 +02:00
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 420531710,
|
|
|
|
|
"name": "CVE-2021-42013",
|
|
|
|
|
"full_name": "TheLastVvV\/CVE-2021-42013",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "TheLastVvV",
|
|
|
|
|
"id": 71128830,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/71128830?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/TheLastVvV"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/TheLastVvV\/CVE-2021-42013",
|
|
|
|
|
"description": "Poc CVE-2021-42013 - Apache 2.4.50 without CGI",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2021-10-23T21:58:44Z",
|
2021-11-04 13:13:26 +01:00
|
|
|
|
"updated_at": "2021-11-04T11:44:21Z",
|
2021-10-24 05:14:30 +02:00
|
|
|
|
"pushed_at": "2021-10-23T22:00:34Z",
|
2021-11-04 13:13:26 +01:00
|
|
|
|
"stargazers_count": 1,
|
|
|
|
|
"watchers_count": 1,
|
2021-10-24 05:14:30 +02:00
|
|
|
|
"forks_count": 0,
|
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
|
|
|
|
"forks": 0,
|
2021-11-04 13:13:26 +01:00
|
|
|
|
"watchers": 1,
|
2021-10-24 05:14:30 +02:00
|
|
|
|
"score": 0
|
2021-10-24 17:12:31 +02:00
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 420684825,
|
|
|
|
|
"name": "CVE-2021-42013_Reverse-Shell",
|
|
|
|
|
"full_name": "TheLastVvV\/CVE-2021-42013_Reverse-Shell",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "TheLastVvV",
|
|
|
|
|
"id": 71128830,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/71128830?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/TheLastVvV"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/TheLastVvV\/CVE-2021-42013_Reverse-Shell",
|
|
|
|
|
"description": "PoC CVE-2021-42013 reverse shell Apache 2.4.50 with CGI",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2021-10-24T12:57:55Z",
|
2021-11-03 13:14:23 +01:00
|
|
|
|
"updated_at": "2021-11-03T09:29:06Z",
|
2021-10-24 17:12:31 +02:00
|
|
|
|
"pushed_at": "2021-10-24T13:26:02Z",
|
2021-11-03 13:14:23 +01:00
|
|
|
|
"stargazers_count": 3,
|
|
|
|
|
"watchers_count": 3,
|
|
|
|
|
"forks_count": 1,
|
2021-10-24 17:12:31 +02:00
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
2021-11-03 13:14:23 +01:00
|
|
|
|
"forks": 1,
|
|
|
|
|
"watchers": 3,
|
2021-10-24 17:12:31 +02:00
|
|
|
|
"score": 0
|
2021-10-27 17:14:12 +02:00
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 421851715,
|
2021-10-28 11:15:29 +02:00
|
|
|
|
"name": "cve-2021-42013",
|
|
|
|
|
"full_name": "walnutsecurity\/cve-2021-42013",
|
2021-10-27 17:14:12 +02:00
|
|
|
|
"owner": {
|
|
|
|
|
"login": "walnutsecurity",
|
|
|
|
|
"id": 92915142,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/92915142?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/walnutsecurity"
|
|
|
|
|
},
|
2021-10-28 11:15:29 +02:00
|
|
|
|
"html_url": "https:\/\/github.com\/walnutsecurity\/cve-2021-42013",
|
2021-10-27 17:14:12 +02:00
|
|
|
|
"description": "cve-2021-42013.py is a python script that will help in finding Path Traversal or Remote Code Execution vulnerability in Apache 2.4.50",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2021-10-27T14:29:10Z",
|
2021-12-24 01:13:46 +01:00
|
|
|
|
"updated_at": "2021-12-23T20:01:15Z",
|
2021-11-25 13:13:16 +01:00
|
|
|
|
"pushed_at": "2021-11-25T09:32:47Z",
|
2021-12-24 01:13:46 +01:00
|
|
|
|
"stargazers_count": 1,
|
|
|
|
|
"watchers_count": 1,
|
2021-12-03 07:13:36 +01:00
|
|
|
|
"forks_count": 4,
|
2021-10-27 17:14:12 +02:00
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
2021-12-03 07:13:36 +01:00
|
|
|
|
"forks": 4,
|
2021-12-24 01:13:46 +01:00
|
|
|
|
"watchers": 1,
|
2021-10-27 17:14:12 +02:00
|
|
|
|
"score": 0
|
2021-11-03 19:15:12 +01:00
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 424321579,
|
|
|
|
|
"name": "CVE-2021-42013",
|
|
|
|
|
"full_name": "robotsense1337\/CVE-2021-42013",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "robotsense1337",
|
|
|
|
|
"id": 84665951,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/84665951?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/robotsense1337"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/robotsense1337\/CVE-2021-42013",
|
|
|
|
|
"description": "Exploit Apache 2.4.50(CVE-2021-42013)",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2021-11-03T17:33:52Z",
|
2021-11-04 07:13:00 +01:00
|
|
|
|
"updated_at": "2021-11-04T04:50:20Z",
|
2021-11-03 19:15:12 +01:00
|
|
|
|
"pushed_at": "2021-11-03T17:41:41Z",
|
2021-11-04 07:13:00 +01:00
|
|
|
|
"stargazers_count": 1,
|
|
|
|
|
"watchers_count": 1,
|
|
|
|
|
"forks_count": 1,
|
2021-11-03 19:15:12 +01:00
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
2021-11-04 07:13:00 +01:00
|
|
|
|
"forks": 1,
|
|
|
|
|
"watchers": 1,
|
2021-11-03 19:15:12 +01:00
|
|
|
|
"score": 0
|
2021-11-14 13:13:01 +01:00
|
|
|
|
},
|
2021-11-14 19:14:07 +01:00
|
|
|
|
{
|
|
|
|
|
"id": 427958357,
|
|
|
|
|
"name": "CVE-2021-42013-ApacheRCE",
|
|
|
|
|
"full_name": "xMohamed0\/CVE-2021-42013-ApacheRCE",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "xMohamed0",
|
|
|
|
|
"id": 94008154,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/94008154?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/xMohamed0"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/xMohamed0\/CVE-2021-42013-ApacheRCE",
|
|
|
|
|
"description": null,
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2021-11-14T14:58:26Z",
|
|
|
|
|
"updated_at": "2021-11-14T14:59:00Z",
|
|
|
|
|
"pushed_at": "2021-11-14T14:58:58Z",
|
|
|
|
|
"stargazers_count": 0,
|
|
|
|
|
"watchers_count": 0,
|
2021-12-03 07:13:36 +01:00
|
|
|
|
"forks_count": 1,
|
2021-11-14 19:14:07 +01:00
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [],
|
|
|
|
|
"visibility": "public",
|
2021-12-03 07:13:36 +01:00
|
|
|
|
"forks": 1,
|
2021-11-14 19:14:07 +01:00
|
|
|
|
"watchers": 0,
|
|
|
|
|
"score": 0
|
2021-11-25 13:13:16 +01:00
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 431779517,
|
|
|
|
|
"name": "CVE-2021-42013",
|
|
|
|
|
"full_name": "ahmad4fifz\/CVE-2021-42013",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "ahmad4fifz",
|
|
|
|
|
"id": 45918058,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/45918058?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/ahmad4fifz"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/ahmad4fifz\/CVE-2021-42013",
|
|
|
|
|
"description": "CVE-2021-41773 on Docker",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2021-11-25T09:07:00Z",
|
2021-12-19 19:14:47 +01:00
|
|
|
|
"updated_at": "2021-12-19T14:32:43Z",
|
2021-11-25 13:13:16 +01:00
|
|
|
|
"pushed_at": "2021-11-25T09:52:44Z",
|
2021-12-19 19:14:47 +01:00
|
|
|
|
"stargazers_count": 5,
|
|
|
|
|
"watchers_count": 5,
|
|
|
|
|
"forks_count": 1,
|
2021-11-25 13:13:16 +01:00
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [
|
|
|
|
|
"apache",
|
|
|
|
|
"cve",
|
|
|
|
|
"cve-2021-42013",
|
|
|
|
|
"docker",
|
|
|
|
|
"docker-compose",
|
|
|
|
|
"lfi"
|
|
|
|
|
],
|
|
|
|
|
"visibility": "public",
|
2021-12-19 19:14:47 +01:00
|
|
|
|
"forks": 1,
|
|
|
|
|
"watchers": 5,
|
2021-11-25 13:13:16 +01:00
|
|
|
|
"score": 0
|
2021-12-23 19:13:32 +01:00
|
|
|
|
},
|
|
|
|
|
{
|
|
|
|
|
"id": 441210162,
|
|
|
|
|
"name": "CVE-2021-42013-Apache-RCE-Poc-Exp",
|
|
|
|
|
"full_name": "asaotomo\/CVE-2021-42013-Apache-RCE-Poc-Exp",
|
|
|
|
|
"owner": {
|
|
|
|
|
"login": "asaotomo",
|
|
|
|
|
"id": 67818638,
|
|
|
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/67818638?v=4",
|
|
|
|
|
"html_url": "https:\/\/github.com\/asaotomo"
|
|
|
|
|
},
|
|
|
|
|
"html_url": "https:\/\/github.com\/asaotomo\/CVE-2021-42013-Apache-RCE-Poc-Exp",
|
|
|
|
|
"description": "Apache 远程代码执行 (CVE-2021-42013)批量检测工具:Apache HTTP Server是美国阿帕奇(Apache)基金会的一款开源网页服务器。该服务器具有快速、可靠且可通过简单的API进行扩充的特点,发现 Apache HTTP Server 2.4.50 中针对 CVE-2021-41773 的修复不够充分。攻击者可以使用路径遍历攻击将 URL 映射到由类似别名的指令配置的目录之外的文件。如果这些目录之外的文件不受通常的默认配置“要求全部拒绝”的保护,则这些请求可能会成功。如果还为这些别名路径启用了 CGI 脚本,则这可能允许远程代码执行。此问题仅影响 Apache 2.4.49 和 Apache 2.4.50,而不影响更早版本。",
|
|
|
|
|
"fork": false,
|
|
|
|
|
"created_at": "2021-12-23T14:46:41Z",
|
|
|
|
|
"updated_at": "2021-12-23T15:51:43Z",
|
|
|
|
|
"pushed_at": "2021-12-23T15:51:41Z",
|
|
|
|
|
"stargazers_count": 2,
|
|
|
|
|
"watchers_count": 2,
|
|
|
|
|
"forks_count": 0,
|
|
|
|
|
"allow_forking": true,
|
|
|
|
|
"is_template": false,
|
|
|
|
|
"topics": [
|
|
|
|
|
"apache",
|
|
|
|
|
"cve-2021-42013",
|
|
|
|
|
"exp",
|
|
|
|
|
"poc",
|
|
|
|
|
"python3"
|
|
|
|
|
],
|
|
|
|
|
"visibility": "public",
|
|
|
|
|
"forks": 0,
|
|
|
|
|
"watchers": 2,
|
|
|
|
|
"score": 0
|
2021-10-07 23:13:16 +02:00
|
|
|
|
}
|
|
|
|
|
]
|