Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2024-9466 PoC — Expedition: Cleartext Storage of Information Leads to Firewall Admin Credential Disclosure

Source
https://github.com/holypryx/CVE-2024-9466
Associated Vulnerability
Title:Expedition: Cleartext Storage of Information Leads to Firewall Admin Credential Disclosure (CVE-2024-9466)
Description:A cleartext storage of sensitive information vulnerability in Palo Alto Networks Expedition allows an authenticated attacker to reveal firewall usernames, passwords, and API keys generated using those credentials.
Description
CVE-2024-9466 poc
Readme
# CVE-2024-9466
CVE-2024-9466 Proof of Concept (PoC)

## Description

This script checks for the CVE-2024-9466 vulnerability by appending `/home/userSpace/devices/debug.txt` to a list of target URLs or IP addresses. It determines if the target is vulnerable based on the HTTP response status code and whether the request is redirected.

## Setup

Ensure that a `targets.txt` file exists in the same directory as the script. This file should contain a list of URLs or IP addresses to check, one per line. Example:
http://example.com
http://192.168.1.1
File Snapshot

 [4.0K]  /data/pocs/f32bb156a7d46ded639aeb55974169b9618d7f75
├── [1.5K]  CVE-2024-9466.py
└── [ 552]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →