Warning: Undefined array key 6 in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 387

Warning: Attempt to read property "slug" on null in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 387

Warning: Undefined array key 6 in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 388

Warning: Attempt to read property "term_id" on null in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 388

Warning: Undefined array key 16 in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 387

Warning: Attempt to read property "slug" on null in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 387

Warning: Undefined array key 16 in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 388

Warning: Attempt to read property "term_id" on null in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 388

Warning: Undefined array key 42 in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 387

Warning: Attempt to read property "slug" on null in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 387

Warning: Undefined array key 42 in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 388

Warning: Attempt to read property "term_id" on null in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 388

Warning: Undefined array key 58 in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 387

Warning: Attempt to read property "slug" on null in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 387

Warning: Undefined array key 58 in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 388

Warning: Attempt to read property "term_id" on null in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 388

Warning: Undefined variable $addMisc in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 336

Warning: Undefined array key 68 in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 222

Warning: Undefined array key 95 in /www/wwwroot/101.35.165.65/wp-content/plugins/collapsing-categories/collapscatlist.php on line 222

[—]CVE漏洞库
- [+]PHP漏洞
  - [+]zzcms漏洞
  - [+]zabbix漏洞
  - [+]xampp漏洞
  - [+]VictorCMS漏洞
  - [+]ThinkPHP漏洞
  - [+]taocms漏洞
  - [+]SubrionCMS漏洞
  - [+]SQL注入漏洞
  - [+]phpmyadmin漏洞
  - [+]php漏洞
  - [+]nagiosxi漏洞
  - [+]Metinfo漏洞
  - [+]Joomla漏洞
  - [+]Hooskcms漏洞
  - [+]finecms漏洞
  - [+]empire漏洞
  - [+]Drupal漏洞
  - [+]Discuz漏洞
  - [+]dedecms漏洞
  - [+]Made Simple漏洞
  - [+]AtomCMS漏洞
  - [+]鸳鸯漏洞
  - [+]文件上传漏洞
  - [+]其他漏洞
  - [+]代码命令执行漏洞
- [+]java漏洞
  - [+]XStream漏洞
  - [+]weblogic漏洞
  - [+]Tomcat漏洞
  - [+]struts2漏洞
  - [+]spring漏洞
  - [+]Solr漏洞
  - [+]Shiro漏洞
  - [+]OfBiz漏洞
  - [+]Nexus漏洞
  - [+]Log4j漏洞
  - [+]Kylin漏洞
  - [+]Jetty漏洞
  - [+]Jenkins漏洞
  - [+]jboss漏洞
  - [+]ElasticSearch漏洞
  - [+]druid漏洞
  - [+]ColdFusion漏洞
  - [+]ActiveMQ漏洞
  - [+]斑鸠漏洞
  - [+]反序列化漏洞
  - [+]其他漏洞
  - [+]代码命令执行漏洞
- [—]中间件漏洞
  - [+]webmin漏洞
  - [+]SaltStack漏洞
  - [+]Redis漏洞
  - [+]Rails漏洞
  - [+]python漏洞
  - [+]postgresql漏洞
  - [+]node漏洞
  - [+]nginx漏洞
  - [+]mysql漏洞
  - [+]jquery漏洞
  - [+]Imagemagick漏洞
  - [+]httpd漏洞
  - [+]GitLab漏洞
  - [+]GhostScript漏洞
  - [+]fastjson漏洞
  - [+]Django漏洞
  - [+]Couchdb漏洞
  - [+]Atlassian漏洞
  - [+]APISIX漏洞
  - [+]Airflow漏洞
  - [+]成对漏洞
  - [+]命令代码执行漏洞
  - [—]其他漏洞
    
    (CVE-2023-42820)(Gitea 1.4目录穿越)
    
    (CVE-2022-24124)(CVE-2023-38633)
    
    (CVE-2021-43287)(CVE-2021-45788)
    
    (CVE-2021-3223)(CVE-2021-4034)
    
    (CVE-2019-15516)(CVE-2021-28073)
    
    (CVE-2018-7171)(CVE-2018-8715)
    
    (CVE-2018-11759)(CVE-2018-18778)
    
    (CVE-2016-5385)(CVE-2018-11409)
    
    (CVE-2011-0751)(CVE-2014-6271)
    
    (Aria2 文件写入)(Celery 反序列化)

30 6 月, 2024

(CVE-2018-11759)(CVE-2018-18778)

Apache mod_jk访问控制绕过漏洞（CVE-2018-11759）

Apache Tomcat JK（mod_jk）Connector是美国阿帕奇（Apache）软件基金会的一款为Apache或IIS提供连接后台Tomcat的模块，用以为Apache或IIS服务器提供处理JSP/Servlet的能力。由于httpd和Tomcat在路径处理规范上存在差异，因此可以绕过Apache mod_jk Connector 1.2.0版本到1.2.44版本上由JkMount httpd指令所定义端点的访问控制限制。如果只有只读权限的jkstatus的接口可以访问的话，那就能够公开由mod_jk模块给AJP提供服务的内部路由。如果具有读写权限的jkstatus接口可供访问，那就能通过修改AJP的配置文件中相关配置来劫持或者截断所有经过mod_jk的流量，又或者进行内部端口扫描。探测jkstatus：jkstatus是mod_jk模块的管理界面。当设为读写权限的时候，它允许通过配置AJP连接Java Web服务器来代理HTTP请求。

影响范围：Apache mod_jk Connector 1.2.0 ~ 1.2.44

payload：192.168.85.130:48437/jkstatus返回无权限访问的页面。

此时在路径 /jkstatus 后加上“;”，再次访问，发现成功绕过访问限制。

mini_httpd任意文件读取漏洞（CVE-2018-18778）

信息收集：nmap 192.168.85.130 -A