CVE-2020-3452

This exploit leverages a path traversal vulnerability in Cisco ASA and FTD devices to download sensitive files from the target system. It sends crafted HTTP requests to the translation-table endpoint with manipulated parameters to retrieve files.

This exploit leverages a path traversal vulnerability in Cisco ASA and FTD devices to download sensitive files from the target system. It uses a crafted URL to bypass directory restrictions and retrieve files from known paths.

This script exploits CVE-2020-3452, an unauthenticated local file inclusion vulnerability in Cisco ASA and FTD software. It sends crafted HTTP requests to read arbitrary files via path traversal in the URL.

This repository contains a functional exploit script for CVE-2020-3452, which leverages directory traversal in Cisco ASA/FTD web services to read sensitive files. The script automates scanning via Shodan and tests multiple exploit paths to confirm vulnerability.

This script exploits CVE-2020-3452, a path traversal vulnerability in Cisco ASA devices, to download sensitive files from the target system. It sends crafted HTTP requests to the vulnerable endpoint to retrieve files listed in the script.

The repository contains a Python script that scans for CVE-2020-3452, a path traversal vulnerability in Cisco ASA and FTD software. It sends crafted HTTP requests to detect the vulnerability but does not exploit it further.

This repository contains a functional exploit script for CVE-2020-3452, which abuses a path traversal vulnerability in Cisco ASA/FTD appliances to enumerate and download files from the web directory. The script uses a predefined list of known files and constructs malicious URLs to fetch them via curl.

This repository contains a functional Python exploit for CVE-2020-3452, a path traversal vulnerability in Cisco ASA software. The script sends a crafted HTTP request to read arbitrary files from the target system, demonstrating the vulnerability.

The repository provides functional HTTP request examples demonstrating directory traversal in Cisco ASA/FTD web services, allowing unauthenticated remote attackers to read sensitive files via crafted URLs. The PoC includes specific request formats and headers for exploitation.

The repository contains a functional Python script that exploits CVE-2020-3452, a path traversal vulnerability in Cisco ASA/FTD Web Services. The script sends crafted HTTP requests to read sensitive files from the target system by manipulating the 'textdomain' and 'lang' parameters.

The repository contains a Python script that scans for CVE-2020-3452, a directory traversal vulnerability in Cisco ASA and FTD web interfaces. It attempts to download files via crafted URLs but does not include exploit code for execution or further exploitation.

The repository contains a Python script that checks for the presence of CVE-2020-3452, a path traversal vulnerability in Cisco ASA and FTD software, by sending crafted HTTP requests to detect the presence of the vulnerable endpoint. It does not exploit the vulnerability but scans for its presence.

This repository contains a bash script that scans for Cisco ASA devices vulnerable to CVE-2020-3452 using Shodan. It checks for the presence of a specific path traversal vulnerability by sending a crafted HTTP request and verifying the response.

This repository contains a functional exploit for CVE-2020-3452, which is an unauthenticated file read vulnerability in Cisco ASA and Firepower devices. The Go-based tool sends crafted HTTP requests to exploit the path traversal flaw in the web interface, allowing attackers to read sensitive files like configuration data.

This repository provides a script to download and execute an Nmap NSE script for detecting CVE-2020-3452, a path traversal vulnerability in Cisco ASA and FTD software. It automates the process of scanning multiple hosts listed in a file.

This repository contains a Python-based scanner for detecting CVE-2020-3452, a path traversal vulnerability in Cisco ASA and FTD software. The tool checks for vulnerable endpoints by sending HTTP OPTIONS requests and analyzing responses for specific strings.

The repository contains a Python script that checks if a given Cisco ASA or Firepower device is vulnerable to CVE-2020-3452, an unauthenticated file read vulnerability. It sends a crafted HTTP request to the target and checks the response for indicators of vulnerability.

This repository contains a functional Python script that exploits CVE-2020-3452, a directory traversal vulnerability in Cisco ASA and Firepower Threat Defense. The script sends crafted HTTP requests to retrieve sensitive files from vulnerable systems.

This repository contains a functional Python script that exploits CVE-2020-3452, a Local File Inclusion (LFI) vulnerability in Cisco Adaptive Security Appliance (ASA) Software. The script sends HTTP requests to specific paths to trigger the vulnerability and checks for a successful response.

This repository contains a Python scanner for CVE-2020-3452, a path traversal vulnerability in Cisco ASA/FTD WebVPN. The tool tests for the vulnerability by attempting to read sensitive files via crafted GET requests but does not perform exploitation.

The repository contains a functional Python script that exploits CVE-2020-3452, a path traversal vulnerability in Cisco ASA and FTD software. The script sends crafted HTTP requests to read sensitive files from the target system by manipulating the 'textdomain' and 'lang' parameters.

The repository contains a functional Python script that exploits CVE-2020-3452, a path traversal vulnerability in Cisco ASA/FTD devices, allowing unauthenticated remote file disclosure. The script automates the retrieval of predefined files via crafted HTTP requests and saves them locally.

This repository contains a functional exploit script for CVE-2020-3452, a path traversal vulnerability in Cisco ASA/FTD devices. The script automates the retrieval of known files from the web directory by abusing the vulnerable endpoint.

This repository contains a functional exploit for CVE-2020-3452, a path traversal vulnerability in Cisco ASA. The Python script `enum.py` automates the enumeration and download of files from vulnerable Cisco ASA devices by exploiting the flaw in the web services interface.

This repository contains an Nmap NSE script designed to detect CVE-2020-3452, a path traversal vulnerability in Cisco ASA and FTD devices allowing unauthorized remote file reading. The script scans for the vulnerability but does not include exploit code for active exploitation.

This repository contains functional exploit code for CVE-2020-3452, a path traversal vulnerability in Cisco ASA and FTD software. The PoC scripts (PowerShell and Bash) demonstrate the vulnerability by attempting to read arbitrary files via crafted HTTP requests.

This repository contains a Python script that scans for CVE-2020-3452, a path traversal vulnerability in Cisco ASA and FTD software. The script sends a crafted HTTP request to detect the vulnerability but does not exploit it.

The repository contains a Python script that checks for the presence of CVE-2020-3452, a directory traversal vulnerability in Cisco ASA and FTD software. The script sends crafted HTTP requests to detect if the target is vulnerable but does not exploit the vulnerability to read files.