xray icon indicating copy to clipboard operation
xray copied to clipboard

Published 20 hours ago verified publisher icon chaitin

add grafana-unauth-fileread.yml

Open fupinglee opened this issue 3 years ago • 1 comments

本 poc 是检测什么漏洞的

grafana未授权任意文件读取漏洞

测试环境

docker run -d -p 3000:3000 --name grafana grafana/grafana-oss:8.2.0

备注

fupinglee avatar Dec 07 '21 10:12 fupinglee

目前的逻辑规则较弱,容易产生误报。

Raiynin avatar Dec 08 '21 08:12 Raiynin

该poc已存在

Jarcis-cy avatar Dec 05 '22 06:12 Jarcis-cy