CVE-2023-25157

This repository contains a functional Python script that exploits CVE-2023-25157, an SQL injection vulnerability in GeoServer's OGC Filter functionality. The script automates the discovery of feature types and properties, then injects a malicious payload via the CQL_FILTER parameter to extract database version information.

This repository provides a detailed technical analysis of SQL injection vulnerabilities (CVE-2023-25157 and CVE-2023-25158) in GeoServer and GeoTools, including affected versions, root causes, and mitigation strategies. It does not contain exploit code but offers in-depth explanations of the vulnerabilities.

The repository contains Python scripts to scan for GeoServer instances vulnerable to CVE-2023-25157 by checking for specific paths and keywords, but does not include functional exploit code for SQL injection.

This repository contains a functional exploit for CVE-2023-25157, a SQL injection vulnerability in GeoServer due to improper input filtering. The exploit automates the discovery of vulnerable endpoints and properties, then constructs malicious CQL_FILTER queries to extract database version information.

This repository contains a functional Go script that checks for CVE-2023-25157, a SQL injection vulnerability in GeoServer. The script enumerates available feature names and properties, then tests for vulnerability by injecting a crafted CQL_FILTER payload to extract the current user.

The repository contains functional exploit code for CVE-2023-25157, specifically targeting GeoServer. The exploit leverages a path traversal vulnerability to access sensitive files on the server.

This repository contains a functional exploit for CVE-2023-25157, a SQL injection vulnerability in GeoServer. The exploit automates the detection and exploitation of the vulnerability across different database backends (PostgreSQL, Oracle, MSSQL/MySQL) by crafting malicious CQL_FILTER queries.

This repository contains a functional exploit PoC for CVE-2023-25157, a SQL injection vulnerability in GeoServer 2.22.0. The exploit leverages a maliciously crafted CQL_FILTER parameter in a WFS request to execute arbitrary SQL queries, demonstrating the vulnerability by extracting the PostgreSQL version.

The repository contains a Python script that scans for GeoServer OGC Filter SQL Injection vulnerabilities (CVE-2023-25157) by retrieving feature types and properties but does not include exploit code for actual SQL injection.