关联漏洞
Description
Remote Unauthenticated API Access Vulnerability in MobileIron Core 11.2 and older
介绍
# 🕵️ Vulnerability Scanner 🛡️
This Python script helps you scan websites for specific vulnerabilities and fetches information regarding authorized users.
## 📌 Features
- Scans URLs for known vulnerabilities (CVE-2023-35082, CVE-2023-35078).
- Retrieves and prints the first 10 email addresses, display names, last login IPs, and roles.
- Supports mass scanning through a file containing a list of URLs.
- Can output results to a file.
## 🔧 How to Use
1. Clone the repository or download the script.
2. Install the required dependencies:
```bash
pip install -r requirements.txt
```
3. Run the script with the desired options:
- Single URL:
```bash
python exploit.py -u <URL> --verbose
```
- Multiple URLs from a file:
```bash
python exploit.py -f <file.txt> --verbose
```
- Save output to a file:
```bash
python exploit.py -u <URL> -o <output_file.txt>
```
## 🎓 Parameters
- `-u, --url`: Base URL for the request.
- `-f, --file`: File containing a list of URLs for mass scanning.
- `-o, --output`: Output file to save vulnerable URLs and first 5 emails.
- `--verbose`: Verbose mode (optional).
## 🛑 Disclaimer
Please use this script responsibly and only on websites that you have the proper authorization to scan. Unauthorized scanning may lead to legal issues.
文件快照
[4.0K] /data/pocs/0dce39a889c412627bc4a384acd7f69450d0d962
├── [5.6K] exploit.py
├── [1.3K] README.md
└── [ 69] requirements.txt
0 directories, 3 files
备注
1. 建议优先通过来源进行访问。
2. 本地 POC 快照面向订阅用户开放;当原始来源失效或无法访问时,本地镜像作为订阅权益的一部分提供。
3. 持续抓取、验证、维护这份 POC 档案需要不少投入,因此本地快照已纳入付费订阅。您的订阅是让这份资料能继续走下去的关键,由衷感谢。 查看订阅方案 →