This repository contains an exploit script for CVE-2023-22518. The script allows for unauthorized file uploads, potentially leading to remote code execution or other security vulnerabilities.
This repository is for educational and informational purposes only. Unauthorized use of this exploit script is strictly prohibited. Be responsible and respect ethical hacking principles.
- CVE ID: CVE-2023-22518
- Vulnerability Type: Unauthorized File Upload
- Severity: High
- Affected Software: [Specify affected software/application]
- Clone the repository to your local machine.
- Run the script by providing the URL and the path to the .zip file you want to upload.
python3 exploit.py
Enter the URL: http://REDACTED:8090/json/setup-restore.action?synchronous=true
Enter the path to the .zip file: /path/xmlexport-20231109-060519-1.zip