Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-5902 PoC — F5 BIG-IP 路径遍历漏洞

Source
https://github.com/lijiaxing1997/CVE-2020-5902-POC-EXP
Associated Vulnerability
Title:F5 BIG-IP 路径遍历漏洞 (CVE-2020-5902)
Description:In BIG-IP versions 15.0.0-15.1.0.3, 14.1.0-14.1.2.5, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the Traffic Management User Interface (TMUI), also referred to as the Configuration utility, has a Remote Code Execution (RCE) vulnerability in undisclosed pages.
Description
批量扫描CVE-2020-5902,远程代码执行,已测试
Readme
# CVE-2020-5902-POC-EXP

**使用方法**

    python3 f5_rce.py scan ip_list_txt
	python3 f5_rce.py https://test.cn:443 ifconfig

**扫描模式**
![image](https://github.com/lijiaxing1997/CVE-2020-5902-POC-EXP/blob/master/scan.png)

**RCE模式**
![image](https://github.com/lijiaxing1997/CVE-2020-5902-POC-EXP/blob/master/rce.png)
File Snapshot

 [4.0K]  /data/pocs/8e2ee943e29bbe1a63ee1d439f82446eec18075f
├── [  12]  f5_ip.txt
├── [5.6K]  f5_rce.py
├── [295K]  rce.png
├── [ 334]  README.md
└── [ 62K]  scan.png

0 directories, 5 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →