Skip to content

aymenbouferroum/CVE-2021-43798_exploit

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
outputs
outputs
 
 
rapport
rapport
 
 
README.md
README.md
 
 
exploit.py
exploit.py
 
 
paths.txt
paths.txt
 
 
payload.txt
payload.txt
 
 
target_list.txt
target_list.txt
 
 

Repository files navigation

CVE-2021-43798_exploit

Grafana is an open-source platform for monitoring and observability. Grafana versions 8.0.0-beta1 through 8.3.0 (except for patched versions) is vulnerable to directory traversal, allowing access to local files. The vulnerable URL path is: <grafana_host_url>/public/plugins//, where is the plugin ID for any installed plugin. Users are advised to upgrade to patched versions 8.0.7, 8.1.8, 8.2.7, or 8.3.1.

Contributors

  • Aymen BOUFERROUM
  • Zakaria KRACHENI

Ref

https://cve.report/CVE-2021-43798

https://github.com/jas502n/Grafana-CVE-2021-43798

https://grafana.com/blog/2021/12/07/grafana-8.3.1-8.2.7-8.1.8-and-8.0.7-released-with-high-severity-security-fix/

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages