Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-11881 PoC — Rancher Labs Rancher 输入验证错误漏洞

Source
https://github.com/MauroEldritch/VanCleef
Associated Vulnerability
Title:Rancher Labs Rancher 输入验证错误漏洞 (CVE-2019-11881)
Description:A vulnerability exists in Rancher before 2.2.4 in the login component, where the errorMsg parameter can be tampered to display arbitrary content, filtering tags but not special characters or symbols. There's no other limitation of the message, allowing malicious users to lure legitimate users to visit phishing sites with scare tactics, e.g., displaying a "This version of Rancher is outdated, please visit https://malicious.rancher.site/upgrading" message.
Description
Exploit for CVE-2019-11881 (Rancher 2.1.4 Web Parameter Tampering)
Readme
VanCleef
======

Rancher 2.1.4 Web Parameter Tampering (CVE-2019-11881)

```
./vancleef.rb rancher_ip rancher_port message_to_display (double-quoted)

#Example: ./vancleef.rb 192.168.0.1 8080 "Rancher is outdated. Please update following the instructions at http://192.168.0.25/rancher-updating"
```
[MITRE CVE Announcement](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11881)
File Snapshot

 [4.0K]  /data/pocs/2c0214f043e7b6e994ef3bf523a27219243c6ae4
├── [ 389]  README.md
└── [ 728]  vancleef.rb

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →