mirror of
https://github.com/nomi-sec/PoC-in-GitHub.git
synced 2025-01-15 20:32:21 +01:00
40 lines
No EOL
1.5 KiB
JSON
40 lines
No EOL
1.5 KiB
JSON
[
|
|
{
|
|
"id": 803988373,
|
|
"name": "CVE-2024-11318",
|
|
"full_name": "xthalach\/CVE-2024-11318",
|
|
"owner": {
|
|
"login": "xthalach",
|
|
"id": 73621025,
|
|
"avatar_url": "https:\/\/avatars.githubusercontent.com\/u\/73621025?v=4",
|
|
"html_url": "https:\/\/github.com\/xthalach",
|
|
"user_view_type": "public"
|
|
},
|
|
"html_url": "https:\/\/github.com\/xthalach\/CVE-2024-11318",
|
|
"description": "This repository details an IDOR vulnerability in AbsysNet 2.3.1, which allows a remote attacker to brute-force session IDs via the \/cgi-bin\/ocap\/ endpoint. Successful exploitation can compromise active user sessions, exposing authentication tokens in HTML. The attack is limited to active sessions and is terminated if the user logs out.",
|
|
"fork": false,
|
|
"created_at": "2024-05-21T18:35:35Z",
|
|
"updated_at": "2024-11-25T14:35:05Z",
|
|
"pushed_at": "2024-11-24T23:08:45Z",
|
|
"stargazers_count": 2,
|
|
"watchers_count": 2,
|
|
"has_discussions": false,
|
|
"forks_count": 0,
|
|
"allow_forking": true,
|
|
"is_template": false,
|
|
"web_commit_signoff_required": false,
|
|
"topics": [
|
|
"absysnet",
|
|
"authentication-bypass",
|
|
"cve-2024-11318",
|
|
"exploit",
|
|
"hijacking",
|
|
"idor-attack"
|
|
],
|
|
"visibility": "public",
|
|
"forks": 0,
|
|
"watchers": 2,
|
|
"score": 0,
|
|
"subscribers_count": 1
|
|
}
|
|
] |