CVE-2019-9081_poc

Poc for CVE-2019-9081, this CVE is just a new POP chain. The project is a pre-built vulnerable Laravel 5.7.x application with an entry point for POI vulnerability at URI /deserialize (POST-request).

Lab setup:

Starting the vulnerable application:

$ git clone https://github.com/nth347/CVE-2019-9081_poc.git
$ cd CVE-2019-9081
$ php artisan serve

Usage:

Obtaining payload:

$ php CVE-2019-8091_poc.php

Sending payload to the application using a POST request to URI /deserialize, via a parameter named data.

Name		Name	Last commit message	Last commit date
Latest commit History 2 Commits
app		app
bootstrap		bootstrap
config		config
database		database
public		public
resources		resources
routes		routes
storage		storage
tests		tests
.editorconfig		.editorconfig
.env.example		.env.example
.gitattributes		.gitattributes
.gitignore		.gitignore
2021-05-08-CVE-2019-9081.burp		2021-05-08-CVE-2019-9081.burp
CVE-2019-9081_poc.php		CVE-2019-9081_poc.php
artisan		artisan
composer.json		composer.json
composer.lock		composer.lock
package.json		package.json
phpunit.xml		phpunit.xml
readme.md		readme.md
server.php		server.php
webpack.mix.js		webpack.mix.js
webpack.mix.js.pretty		webpack.mix.js.pretty

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

CVE-2019-9081_poc

Lab setup:

Usage:

Reference:

About

Releases

Packages

Languages

nth347/CVE-2019-9081_PoC

Folders and files

Latest commit

History

Repository files navigation

CVE-2019-9081_poc

Lab setup:

Usage:

Reference:

About

Topics

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages