Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2020-8165 PoC — Ruby on Rails 代码问题漏洞

Source
https://github.com/AssassinUKG/CVE-2020-8165
Associated Vulnerability
Title:Ruby on Rails 代码问题漏洞 (CVE-2020-8165)
Description:A deserialization of untrusted data vulnernerability exists in rails < 5.2.4.3, rails < 6.0.3.1 that can allow an attacker to unmarshal user-provided objects in MemCacheStore and RedisCacheStore potentially resulting in an RCE.
Readme
# CVE-2020-8165.py

A shell for CVE-2020-8165 exploit: https://github.com/masahiro331/CVE-2020-8165

![](/assets/cve.png)

## Usage:
CVE-2020-8165.py IP IP:PORT
```
CVE-2020-8165.py 2.3.2.3 10.10.10.10:4444
```
File Snapshot

 [4.0K]  /data/pocs/d98820da616535a3f8b9b9c13bac2b3ec3667ffb
├── [4.0K]  assets
│   ├── [   1]  a
│   └── [ 10K]  cve.png
├── [4.6K]  CVE-2020-8165.py
└── [ 213]  README.md

1 directory, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →