https://github.com/chocapikk/cve-2023-35082
Remote Unauthenticated API Access Vulnerability in MobileIron Core 11.2 and older
https://github.com/chocapikk/cve-2023-35082
Last synced: about 1 year ago
JSON representation
Remote Unauthenticated API Access Vulnerability in MobileIron Core 11.2 and older
- Host: GitHub
- URL: https://github.com/chocapikk/cve-2023-35082
- Owner: Chocapikk
- Created: 2023-08-04T16:25:24.000Z (almost 3 years ago)
- Default Branch: main
- Last Pushed: 2023-08-07T18:56:40.000Z (almost 3 years ago)
- Last Synced: 2025-03-30T19:17:15.639Z (about 1 year ago)
- Language: Python
- Size: 3.91 KB
- Stars: 3
- Watchers: 2
- Forks: 1
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# 🕵️ Vulnerability Scanner 🛡️
This Python script helps you scan websites for specific vulnerabilities and fetches information regarding authorized users.
## 📌 Features
- Scans URLs for known vulnerabilities (CVE-2023-35082, CVE-2023-35078).
- Retrieves and prints the first 10 email addresses, display names, last login IPs, and roles.
- Supports mass scanning through a file containing a list of URLs.
- Can output results to a file.
## 🔧 How to Use
1. Clone the repository or download the script.
2. Install the required dependencies:
```bash
pip install -r requirements.txt
```
3. Run the script with the desired options:
- Single URL:
```bash
python exploit.py -u --verbose
```
- Multiple URLs from a file:
```bash
python exploit.py -f --verbose
```
- Save output to a file:
```bash
python exploit.py -u -o
```
## 🎓 Parameters
- `-u, --url`: Base URL for the request.
- `-f, --file`: File containing a list of URLs for mass scanning.
- `-o, --output`: Output file to save vulnerable URLs and first 5 emails.
- `--verbose`: Verbose mode (optional).
## 🛑 Disclaimer
Please use this script responsibly and only on websites that you have the proper authorization to scan. Unauthorized scanning may lead to legal issues.