Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-41265 PoC — Qlik Sense 环境问题漏洞

Source
https://github.com/praetorian-inc/zeroqlik-detect
Associated Vulnerability
Title:Qlik Sense 环境问题漏洞 (CVE-2023-41265)
Description:An HTTP Request Tunneling vulnerability found in Qlik Sense Enterprise for Windows for versions May 2023 Patch 3 and earlier, February 2023 Patch 7 and earlier, November 2022 Patch 10 and earlier, and August 2022 Patch 12 and earlier allows a remote attacker to elevate their privilege by tunneling HTTP requests in the raw HTTP request. This allows them to send requests that get executed by the backend server hosting the repository application. This is fixed in August 2023 IR, May 2023 Patch 4, February 2023 Patch 8, November 2022 Patch 11, and August 2022 Patch 13.
Description
A Nuclei template to detect ZeroQlik (CVE-2023-41265 and CVE-2023-41266)
Readme
# Description
A Nuclei template to detect ZeroQlik (CVE-2023-41265 and CVE-2023-41266)
File Snapshot

 [4.0K]  /data/pocs/becb63c486db00b94e9c4dbfd7b4de43bbe50ced
├── [  87]  README.md
└── [1.1K]  zeroqlik-vulnerability.yaml

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →