CVE-2021-3019

This repository contains a functional Python script that exploits CVE-2021-3019, a directory traversal vulnerability in lanproxy, allowing arbitrary file read. The PoC sends crafted HTTP requests to read sensitive files like config.properties or other system files via path traversal.

This repository contains a functional exploit for CVE-2021-3019, a directory traversal vulnerability in lanproxy 0.1. The script reads a list of URLs from a file, attempts to access the vulnerable endpoint `/..%2Fconf%2Fconfig.properties`, and extracts admin credentials if the vulnerability is present.

This repository contains a Python script that scans for the Lanproxy directory traversal vulnerability (CVE-2021-3019) by attempting to access the 'config.properties' file. It verifies the presence of the vulnerability by checking for specific content in the response.

The repository provides a functional proof-of-concept for CVE-2021-3019, a directory traversal vulnerability in LanProxy 0.1. It includes a detailed HTTP request to exploit the vulnerability and retrieve sensitive configuration files containing credentials.

This repository contains a functional exploit for CVE-2021-3019, a directory traversal vulnerability in Lanproxy 0.1. The PoC sends a crafted HTTP request to read arbitrary files (e.g., `/..%2Fconf%2Fconfig.properties`) and checks for the presence of 'admin' in the response to confirm vulnerability.

The repository contains a functional exploit for CVE-2021-3019, targeting a directory traversal vulnerability in Lanproxy. The PoC sends a crafted HTTP request to access sensitive files (e.g., config.properties) and can be extended to read arbitrary files.

The repository lacks exploit code and provides vague instructions in Chinese, directing users to add IPs to a file and run 'Cheeetah' without technical details or actual PoC code.