Skip to content

Baikuya/CVE-2022-44268-PoC

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits

README.md

README.md

 
 

pngout.png

pngout.png

 
 

Repository files navigation

CVE-2022-44268-PoC

This repository includes a test file for CVE-2022-44268 ImageMagick Arbitrary File Read.

Testing

  1. Upload the pngout.png into a Webapplication
  2. Check if the image can be cropped, cut or edited in any way
  3. Download the edited image
  4. Use identify -verbose edit_image.png to see if Raw profile type: has some value
  5. If the applciation is vulnerable you will see some bytes which contain the /etc/passwd for the application host

Legal notice

Only use this for testing and legal purpose

About

CVE-2022-44268 PoC

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published