Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-1010174 PoC — CImg Library 命令注入漏洞

Source
https://github.com/NketiahGodfred/CVE-2019-1010174
Associated Vulnerability
Title:CImg Library 命令注入漏洞 (CVE-2019-1010174)
Description:CImg The CImg Library v.2.3.3 and earlier is affected by: command injection. The impact is: RCE. The component is: load_network() function. The attack vector is: Loading an image from a user-controllable url can lead to command injection, because no string sanitization is done on the url. The fixed version is: v.2.3.4.
Description
 CImg Library v.2.3.3 - command injection
Readme
# CVE-2019-1010174

 CImg Library v.2.3.3 - command injection
 
CVE-2019-1010174 Detail
Modified
This vulnerability has been modified since it was last analyzed by the NVD. It is awaiting reanalysis which may result in further changes to the information provided.

Description
CImg The CImg Library v.2.3.3 and earlier is affected by: command injection. The impact is: RCE. The component is: load_network() function. The attack vector is: Loading an image from a user-controllable url can lead to command injection, because no string sanitization is done on the url. The fixed version is: v.2.3.4.


![CVE-2019-1010174](https://raw.githubusercontent.com/NketiahGodfred/CVE-2019-1010174/main/CVE-2019-1010174.png)
File Snapshot

 [4.0K]  /data/pocs/fcdabe7cb070f9b75cb5a6798c77f43b45210996
├── [125K]  CVE-2019-1010174.png
├── [1.1K]  exploit.sh
└── [ 713]  README.md

0 directories, 3 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →