CVE-2023-27163

This repository contains a functional Proof-of-Concept (PoC) for CVE-2023-27163, an SSRF vulnerability in Request-Baskets <= 1.2.1. The script automates the creation of a malicious basket that forwards requests to an attacker-controlled server, demonstrating the SSRF exploit.

This repository contains a functional exploit PoC for CVE-2023-27163, which leverages a misconfiguration in the Request-Baskets application to perform internal port scanning. The script automates the creation of baskets and reconfigures them to probe internal ports, effectively demonstrating the SSRF vulnerability.

This repository contains a functional Python script that exploits CVE-2023-27163, an SSRF vulnerability in request-baskets. The script automates the enumeration of internal servers by creating baskets and forwarding requests to internal targets.

This repository contains a functional PoC for CVE-2023-27163, an SSRF vulnerability in Request-Baskets <= 1.2.1. The script automates the creation of a malicious basket that forwards requests to an attacker-controlled server, demonstrating the SSRF exploit.

This repository contains a functional exploit script for CVE-2023-27163, an SSRF vulnerability in Request-Baskets (<= 1.2.1). The script automates the creation of a malicious basket that forwards requests to an attacker-controlled URL, enabling SSRF attacks.

This repository contains a functional Go-based exploit for CVE-2023-27163, targeting Mailtrail's basket API to achieve remote code execution (RCE) via crafted HTTP requests and command injection.

This repository contains a functional exploit for CVE-2023-27163, an SSRF vulnerability in Request Baskets versions <1.2.1. The exploit creates a malicious basket that forwards requests to an attacker-controlled URL, demonstrating the SSRF.

This repository contains a functional exploit for CVE-2023-27163, an SSRF vulnerability in Request Baskets versions <1.2.1. The exploit creates a malicious basket that forwards requests to an attacker-controlled URL via the `/api/baskets/{name}` endpoint.

This repository contains a functional exploit that chains CVE-2023-27163 (SSRF in Requests Baskets v1.2.1) with a command injection vulnerability in Mailtrail v0.53 to achieve remote code execution via a reverse shell.

This repository contains a functional Python exploit for CVE-2023-27163, an SSRF vulnerability in Request-Baskets. The script automates the creation of a basket, sets a forward_url to local ports, and brute-forces internal services by checking responses for open ports.

This repository contains a functional Python script that exploits CVE-2023-27163, an SSRF vulnerability in Request Basket. The script automates the creation of a basket, retrieval of an API token, and configuration of the basket to forward requests to internal ports on the vulnerable server.

This repository contains a functional bash script that exploits CVE-2023-27163, an SSRF vulnerability in Request-Baskets up to version 1.2.1. The script automates the creation of a malicious basket that forwards requests to an attacker-controlled server, demonstrating the vulnerability.

This repository contains a functional exploit script for CVE-2023-27163, an SSRF vulnerability in request-baskets up to v1.2.1. The script automates the creation of a malicious basket, triggers an SSRF to fetch a reverse shell payload, and executes it via command injection in the login endpoint.

This repository contains a functional exploit PoC for CVE-2023-27163, an SSRF vulnerability in Request-Baskets (<= 1.2.1). The script automates the creation of baskets to forward requests to a target URL, enabling server-side request forgery attacks.

This repository contains a functional Python exploit for CVE-2023-27163, an SSRF vulnerability in request-baskets <= 1.2.1. The exploit leverages the `/api/baskets/{name}` endpoint to forward arbitrary HTTP requests via the `forward_url` parameter, enabling internal service probing, port scanning, and cloud metadata access.

This repository contains a functional Python exploit that chains CVE-2023-27163 (SSRF in Request Baskets) with an unauthenticated RCE in Maltrail 0.53 to deliver a reverse shell. The exploit automates the process of creating a request basket, leveraging it to interact with Maltrail, and executing a reverse shell payload.

This repository contains a functional exploit for CVE-2023-27163, targeting Maltrail 0.53. The exploit leverages command injection in the login endpoint to achieve remote code execution (RCE) via a reverse shell payload.

This repository contains a functional Python script that exploits CVE-2023-27163, an SSRF vulnerability in Baskets. The script sends a crafted POST request to create a basket that forwards requests to an internal URL, demonstrating the SSRF.

This repository contains a functional exploit for CVE-2023-27163, an SSRF vulnerability in Request-Baskets up to v1.2.1. The exploit creates a basket to forward requests to an internal service and chains it with an RCE payload to establish a reverse shell.

This exploit targets CVE-2023-27163 by leveraging an SSRF vulnerability in the MailTrail application to trigger a reverse shell. It first creates a malicious basket via the API, then executes a base64-encoded Python reverse shell payload through command injection.

The repository contains a functional Python exploit for CVE-2023-27163, an SSRF vulnerability in 'request-baskets' <= v1.2.1. The exploit demonstrates the ability to create baskets, trigger SSRF requests, and scan ports via crafted API calls.

This script exploits CVE-2023-27163, an SSRF vulnerability in the target software, by sending crafted requests to scan internal ports. It iterates through ports 1-65535, attempting to forward requests to localhost via the vulnerable API endpoint.

This repository contains a functional Python script that exploits CVE-2023-27163, an SSRF vulnerability in request-baskets up to v1.2.1. The script creates a proxy basket that forwards requests to an attacker-controlled server, demonstrating the vulnerability.

This repository contains a functional Python exploit for CVE-2023-27163, which targets an SSRF vulnerability in the Basket API. The script sends a crafted POST request to create a malicious basket that forwards requests to an attacker-controlled URL.

This repository contains a functional Python exploit for CVE-2023-27163, an SSRF vulnerability in Request-Baskets v1.2.1. The exploit creates a proxy basket that forwards requests to an attacker-controlled server, demonstrating the SSRF flaw.

This repository contains a functional exploit for CVE-2023-27163, an SSRF vulnerability in the Baskets API. The script sends a crafted JSON payload to the target URL, triggering an SSRF to an internal service (127.0.0.1:80).

This repository contains a functional Python exploit for CVE-2023-27163, an SSRF vulnerability in Request-Baskets. The script creates a basket, sets a forward_url to local ports, and checks for open services by analyzing responses.

This repository contains a functional exploit for CVE-2023-27163, an SSRF vulnerability in Request-Baskets up to v1.2.1. The exploit creates a basket to forward requests to an internal service and chains it with an RCE payload to achieve remote code execution via a reverse shell.

This repository contains a functional exploit for CVE-2023-27163, an SSRF vulnerability in Request-Baskets (<= 1.2.1). The exploit creates a malicious basket that forwards requests to an attacker-controlled URL, enabling SSRF attacks.

The repository contains a functional Python exploit for CVE-2023-27163, an SSRF vulnerability in Request-Baskets up to version 1.2.1. The exploit creates a basket with a malicious forward_url to proxy requests to an internal service.

This repository contains a functional exploit for CVE-2023-27163, targeting Maltrail v0.53. The exploit leverages command injection in the login endpoint by embedding a base64-encoded reverse shell payload in the 'username' parameter.