WSO2 Carbon Server CVE-2022-29464

Pre-auth RCE bug CVE-2022-29464. Write by Chocapikk lightely modded by trhacknon

Usage

python exploit.py -u <wso2_carbon_server>

or:

python exploit.py -f <file>

Zoomeye Dork

CLI:

zoomeye search 'title:"WSO2 Management Console"'  -num 10  -filter=ip,port

WEB:

title:"WSO2 Management Console"

Google dorks


inurl:"/carbon/admin/login.jsp"
inurl"/authtenticationdpoit/login.do"
inurl:"/authenticationendpoint/login.do"
inurl:"devportal/apis"
intitle:"API Publisher- Login" 
intitle:"WSO2 Management Console"

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

WSO2 Carbon Server CVE-2022-29464

Usage

Zoomeye Dork

Google dorks

Files

README.md

Latest commit

History

README.md

File metadata and controls

WSO2 Carbon Server CVE-2022-29464

Usage

Zoomeye Dork

Google dorks