CVE-2024-1709

This repository contains a functional exploit for CVE-2024-1709, which leverages an authentication bypass in ConnectWise ScreenConnect to achieve remote code execution (RCE) via a malicious extension upload. The exploit automates the process of creating, uploading, and executing a custom .ashx handler to gain command execution on the target system.

The repository contains functional exploit code for CVE-2024-1709, including a Python script and Nuclei templates for detection and exploitation. The exploit demonstrates an information disclosure vulnerability in Citrix Gateway.

This repository contains a functional exploit for CVE-2024-1709, targeting ScreenConnect's authentication bypass and remote code execution vulnerability. The exploit automates the process of uploading a malicious extension to achieve RCE via a crafted web handler.

This repository contains a Python script that scans for CVE-2024-1709, an authentication bypass vulnerability in ConnectWise SecureConnect. The script checks for a specific endpoint response pattern to identify vulnerable hosts.

This repository contains a functional Python exploit for CVE-2024-1709, which chains an authentication bypass (CVE-2024-1708) with remote code execution in ConnectWise ScreenConnect. The tool checks for vulnerability and provides exploitation guidance, including admin endpoint discovery and setup mode detection.

This repository contains a functional exploit for CVE-2024-1709, which leverages an extension upload vulnerability to achieve remote code execution (RCE) on the target system. The exploit creates a malicious extension, uploads it, and executes arbitrary commands via a crafted HTTP handler.

This repository contains a functional exploit for CVE-2024-1709, an authentication bypass vulnerability in ConnectWise ScreenConnect. The exploit automates the process of adding a new user by bypassing authentication through crafted HTTP requests to the SetupWizard.aspx endpoint.

This repository contains a functional exploit PoC for CVE-2024-1709, which demonstrates an authentication bypass vulnerability in ConnectWise ScreenConnect. The exploit adds a new administrative user by manipulating the setup wizard process, leveraging extracted VIEWSTATE and VIEWSTATEGENERATOR values.