CVE-2023-23333
Description
There is a command injection vulnerability in SolarView Compact through 6.00, attackers can execute commands by bypassing internal restrictions through downloader.php.
NVD
Severity: CRITICAL
CVE ID: CVE-2023-23333
CVSS Score: 9.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Proof Of Concept
Nuclei Templates for CVE-2023-23333
Refrence: Project Discovery GitHub
Timorlover
There is a command injection vulnerability in SolarView Compact through 6.00, attackers can execute commands by bypassing internal restrictions through downloader.php.
Refrence: GitHub
Mr-xn
SolarView Compact through 6.00 downloader.php commands injection (RCE) nuclei-templates
Refrence: GitHub
emanueldosreis
Nmap NSE script to dump / test Solarwinds CVE-2023-23333 vulnerability
Refrence: GitHub
Content on GitHub
getdrive | watchers:59
PoC
PoC. Severity critical.
Refrence: GitHub