CVE-2023-48084 PoC — Nagios XI 安全漏洞

Source

https://github.com/Hamibubu/CVE-2023-48084

Associated Vulnerability

Title:Nagios XI 安全漏洞 (CVE-2023-48084)
Description:Nagios XI before version 5.11.3 was discovered to contain a SQL injection vulnerability via the bulk modification tool.

Description

Python program to dump all the databases, exploiting NagiosXI sqli vulnerability

Readme

# CVE-2023-48084

Python exploit for the CVE-2023-48084 -> `Nagios XI before version 5.11.3 was discovered to contain a SQL injection vulnerability via the bulk modification tool.`

The exploit uses `/admin/banner_message-ajaxhelper.php?action=acknowledge_banner_message&id=(<SQL COMMAND TO EXECUTE>)` to execute SQL queries, and exploits a blind SQL injection...


## Usage

Clone the repo and install the requirements.txt

```bash
git clone https://github.com/Hamibubu/CVE-2023-48084.git
cd CVE-2023-48084
pip install -r requirements.txt
```
Now execute the program, you need a non-admin session cookie, or an API token, example

```bash
python3 CVE-2023-48084.py --url https://monitored.htb/nagiosxi -a <token>
python3 CVE-2023-48084.py --url https://monitored.htb/nagiosxi -c <cookie>
```

## NOTE

For default it will try to dump all the database starting from schemas, if you want it more fast, just look at the code and take the part that you need

File Snapshot


 [4.0K]  /data/pocs/e2c35eb5920fb998a65526bcade140623ed2a507
├── [ 10K]  CVE-2023-48084.py
├── [ 955]  README.md
└── [  17]  requirements.txt

0 directories, 3 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.

View subscription plans →

Goal Reached Thanks to every supporter — we hit 100%!