Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-0204 PoC — Authentication Bypass in GoAnywhere MFT

Source
https://github.com/adminlove520/CVE-2024-0204
Associated Vulnerability
Title:Authentication Bypass in GoAnywhere MFT (CVE-2024-0204)
Description:Authentication bypass in Fortra's GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via the administration portal.
Description
GoAnywhere MFT
Readme
# CVE-2024-0204: Authentication Bypass in GoAnywhere MFT
Script to create a new admin user in GoAnywhere MFT.


## Usage
Password must be at least 8 characters long to meet GoAnywhere MFT complexity requirements.

```
% python3 CVE-2024-0204.py -h
usage: CVE-2024-0204 GoAnywhere Authentication Bypass [-h]
                                                      endpoint username
                                                      password

positional arguments:
  endpoint    The endpoint URL (e.g., http://127.0.0.1:8080)
  username    New admin username
  password    New admin password

optional arguments:
  -h, --help  show this help message and exit
```
File Snapshot

 [4.0K]  /data/pocs/344455772ae5820c110f089c60101863af076894
├── [2.0K]  CVE-2024-0204.py
└── [ 662]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →