Skip to content
/ CVE-2021-26855-SSRF Public
forked from pussycat0x/CVE-2021-26855-SSRF

This script helps to identify CVE-2021-26855 ssrf Poc

1 star 12 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Barriuso/CVE-2021-26855-SSRF

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
CVE-2021-26855.py
CVE-2021-26855.py
 
 
PoC.JPG
PoC.JPG
 
 
README.md
README.md
 
 

Repository files navigation

CVE-2021-26855-SSRF-Poc

This script helps to identify CVE-2021-26855 ssrf Poc

Reference: https://proxylogon.com/

Script usage

python CVE-2021-26855.py -H target.com -B xxxxxxxxxxxxxxxxxx.burpcollaborator.net

PoC

If you are able to retrieve tokens through HTTPS request. then the target is vulnerable. otherwise, it will be a false positive. Check the following headers. X-SourceCafeServer: X-CommonAccessToken:

http request

About

This script helps to identify CVE-2021-26855 ssrf Poc

Resources

Readme
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 100.0%