.. / CVE-2024-0204

Exploit for Fortra GoAnywhere MFT < 7.4.1 - Authentication Bypass (CVE-2024-0204)

Description:

Authentication bypass in Fortra’s GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via the administration portal.

Affected Products:

Proof of Concept

PoC exploits

Nuclei Template

View the template here CVE-2024-0204.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2024/CVE-2024-0204.yaml
Copy

References:

https://my.goanywhere.com/webclient/ViewSecurityAdvisories.xhtml
https://www.fortra.com/security/advisory/fi-2024-001
https://github.com/horizon3ai/CVE-2024-0204/blob/main/CVE-2024-0204.py
https://www.horizon3.ai/cve-2024-0204-fortra-goanywhere-mft-authentication-bypass-deep-dive/
http://packetstormsecurity.com/files/176683/GoAnywhere-MFT-Authentication-Bypass.html