https://github.com/ImageTragick/PoCs

Proof of Concepts for CVE-2016–3714
https://github.com/ImageTragick/PoCs

Last synced: 7 months ago
JSON representation

Proof of Concepts for CVE-2016–3714

• Host: GitHub
• URL: https://github.com/ImageTragick/PoCs
• Owner: ImageTragick
• Created: 2016-05-03T05:43:08.000Z (over 9 years ago)
• Default Branch: master
• Last Pushed: 2016-05-23T17:45:55.000Z (over 9 years ago)
• Last Synced: 2024-11-09T23:36:29.692Z (about 1 year ago)
• Language: Shell
• Homepage: https://imagetragick.com
• Size: 22.5 KB
• Stars: 499
• Watchers: 30
• Forks: 153
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# ImageTragick POCs

## How To Use

```

git clone https://github.com/ImageTragick/PoCs.git

cd PoCs

./test.sh

```

To test a `policy.xml` file place it in the script directory and run `test.sh`.

## Safe Output

```

user@host:~/code/PoCs$ ./test.sh 

testing read

SAFE

testing delete

SAFE

testing http with local port: 38663

SAFE

testing http with nonce: a7DyBeV7

SAFE

testing rce1

SAFE

testing rce2

SAFE

testing MSL

SAFE

```

## Unsafe Output

```

user@host:~/code/PoCs$ ./test.sh 

testing read

UNSAFE

testing delete

UNSAFE

testing http with local port: 44755

UNSAFE

testing http with nonce: a7DvBer2

UNSAFE

testing rce1

UNSAFE

testing rce2

UNSAFE

testing MSL

UNSAFE

```