CVE-2015-5531

This PoC exploits a path traversal vulnerability in ElasticSearch (CVE-2015-5531) to read arbitrary files from the server. It leverages misconfigured snapshot repositories to bypass restrictions and retrieve file contents as byte arrays.

This PoC exploits a directory traversal vulnerability in Elasticsearch (CVE-2015-5531) by abusing the snapshot API to read arbitrary files. It sends crafted HTTP requests to traverse directories and decode the response to retrieve file contents.

This PoC exploits CVE-2015-5531, a directory traversal vulnerability in Elasticsearch, to read arbitrary files on the target system. It leverages the snapshot API to traverse directories and retrieve file contents.

This repository contains a functional Proof-of-Concept (PoC) exploit for CVE-2015-5531, which targets a vulnerability in the RDP service. The exploit demonstrates memory corruption via crafted packets, potentially leading to Remote Code Execution (RCE).

This Metasploit module exploits a directory traversal vulnerability in ElasticSearch's Snapshot API (CVE-2015-5531) to read arbitrary files with JVM process privileges. It checks for vulnerability and retrieves file contents via crafted HTTP requests.