.. / CVE-2023-24243

Exploit for CData RSB Connect v22.0.8336 - Server Side Request Forgery (CVE-2023-24243)

Description:

CData RSB Connect v22.0.8336 was discovered to contain a Server-Side Request Forgery (SSRF).

Nuclei Template

View the template here CVE-2023-24243.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2023/CVE-2023-24243.yaml
Copy

References:

https://arc.cdata.com/trial/
https://nvd.nist.gov/vuln/detail/CVE-2023-24243
https://twitter.com/W01fh4cker/status/1669890019191037952
https://gist.github.com/d3vc0r3/6460a5f006e32a2ebffe739e411ab1b8
https://arc.cdata.com/