Skip to content

Exploit for "GitLab Instance" Arbitrary server file read vulnerability

Notifications You must be signed in to change notification settings

KooroshRZ/CVE-2020-10977

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

6 Commits
 
 
 
 
 
 

Repository files navigation

Python Exploit for gitlab private instance arbitrary file read

At the date of 03/23/2020, a vulnerability report with its PoC was released in hackerone by William Bowling
With this vulnerability we can read any world readable files (with permission 444 or more) on the gitlab server like /etc/passwd and so on... (worldreadable files only)\

Notice that you should be authenticated user

I've tested it on gitlab version 21.9.0 (ubuntu 18.04) but it's OS independent

exploit-db

Many thanks to exploit-db team for publishing this exploit
https://www.exploit-db.com/exploits/48431

Credit

Many thanks to William Bowling
vulnerability disclosed by : William Bowling of Biteable, a.k.a vakzz
https://hackerone.com/reports/827052

About

Exploit for "GitLab Instance" Arbitrary server file read vulnerability

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages