Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-36123 PoC — Plain Craft Launcher 路径遍历漏洞

Source
https://github.com/9Bakabaka/CVE-2023-36123
Associated Vulnerability
Title:Plain Craft Launcher 路径遍历漏洞 (CVE-2023-36123)
Description:Directory Traversal vulnerability in Hex-Dragon Plain Craft Launcher 2 version Alpha 1.3.9, allows local attackers to execute arbitrary code and gain sensitive information.
Description
The PoC of CVE-2023-36123
Readme
# CVE-2023-36123

For demonstration purposes only. Exploit works on all Versions of Plain Craft Launcher 2.

Download Custom.xaml and import into Plain Craft Launcher 2,then click "Run Command".


https://github.com/Hex-Dragon/PCL2/assets/140469824/636d1436-a26d-4f54-ad4f-a7b1bb123783
File Snapshot

 [4.0K]  /data/pocs/837f60959974db48293f28c7154fe82b5720c253
├── [ 995]  Custom.xaml
└── [ 286]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →