Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2022-1292 PoC — The c_rehash script allows command injection

Source
https://github.com/li8u99/CVE-2022-1292
Associated Vulnerability
Title:The c_rehash script allows command injection (CVE-2022-1292)
Description:The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script. Use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool. Fixed in OpenSSL 3.0.3 (Affected 3.0.0,3.0.1,3.0.2). Fixed in OpenSSL 1.1.1o (Affected 1.1.1-1.1.1n). Fixed in OpenSSL 1.0.2ze (Affected 1.0.2-1.0.2zd).
Description
CVE-2022-1292
Readme
# CVE-2022-1292

bash chack.sh

![image](https://user-images.githubusercontent.com/37184853/170004376-ddbcceb0-838d-4932-99e4-699d1b35a31f.png)
File Snapshot

 [4.0K]  /data/pocs/defe63f26e01d3cddc2095a9653a2dedcf71343c
├── [ 293]  chack.sh
└── [ 144]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →