Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-22393 PoC — Apache Answer: Pixel Flood Attack by uploading the large pixel file

Source
https://github.com/omranisecurity/CVE-2024-22393
Associated Vulnerability
Title:Apache Answer: Pixel Flood Attack by uploading the large pixel file (CVE-2024-22393)
Description:Unrestricted Upload of File with Dangerous Type vulnerability in Apache Answer.This issue affects Apache Answer: through 1.2.1. Pixel Flood Attack by uploading large pixel files will cause server out of memory. A logged-in user can cause such an attack by uploading an image when posting content. Users are recommended to upgrade to version [1.2.5], which fixes the issue.
Readme
#  Exploit CVE-2024-22393

To exploit this vulnerability, upload the photo I provided in any photo upload section.<br>
[lottapixel.jpg](https://github.com/omranisecurity/CVE-2024-22393/blob/main/lottapixel.jpg)


References:<br>
https://nvd.nist.gov/vuln/detail/CVE-2024-22393<br>
https://www.openwall.com/lists/oss-security/2024/02/22/1<br>
https://lists.apache.org/thread/f58l6dr4r74hl6o71gn47kmn44vw12cv
File Snapshot

 [4.0K]  /data/pocs/5cbcf720a61fe0a253aa3951f4d102e0433d3c10
├── [4.7K]  lottapixel.jpg
└── [ 407]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →