Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-40438 PoC — mod_proxy SSRF

Source
https://github.com/ericmann/apache-cve-poc
Associated Vulnerability
Title:mod_proxy SSRF (CVE-2021-40438)
Description:A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and earlier.
Description
Dockerized Proof-of-Concept of CVE-2021-40438 in Apache 2.4.48.
Readme
# apache-cve-poc
Dockerized Proof-of-Concept of CVE-2021-40438 in Apache 2.4.48.
File Snapshot

 [4.0K]  /data/pocs/3dc69d0177e32c095f9cb90c17ef925aa8b8f82d
├── [4.0K]  apache
│   ├── [ 262]  Dockerfile
│   ├── [ 20K]  httpd.conf
│   └── [ 371]  vhost.conf
├── [ 125]  docker-compose.yml
├── [1.0K]  LICENSE
├── [4.0K]  php
│   ├── [ 131]  Dockerfile
│   └── [  16]  server.php
└── [  81]  README.md

2 directories, 8 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →