http

package
v0.4.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Mar 3, 2026 License: AGPL-3.0 Imports: 1 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type Langflow 

type Langflow struct{ sdk.Pik }

Langflow exploits pre-auth RCE in Langflow's /api/v1/validate/code endpoint. Python exec via decorator injection (CVE-2025-3248).

func (*Langflow) Check 

func (m *Langflow) Check(run *sdk.Context) (sdk.CheckResult, error)

func (*Langflow) Exploit 

func (m *Langflow) Exploit(run *sdk.Context) error

func (*Langflow) Info 

func (m *Langflow) Info() sdk.Info

type OpenDCIM 

type OpenDCIM struct{ sdk.Pik }

OpenDCIM exploits SQL injection in openDCIM's install.php LDAP config update to achieve RCE via dot binary path poisoning (CVE-2026-28515/28516/28517).

func (*OpenDCIM) Check 

func (m *OpenDCIM) Check(run *sdk.Context) (sdk.CheckResult, error)

Check probes install.php accessibility and confirms SQLi via time-based test.

func (*OpenDCIM) ExecuteCommand 

func (m *OpenDCIM) ExecuteCommand(run *sdk.Context, cmd string) error

ExecuteCommand injects a command via SQLi into the dot binary path and triggers it.

func (*OpenDCIM) Exploit 

func (m *OpenDCIM) Exploit(run *sdk.Context) error

Exploit chains SQLi to RCE. Handles both single-shot payloads and CmdStager chunked delivery. Backs up config before, restores after.

func (*OpenDCIM) Info 

func (m *OpenDCIM) Info() sdk.Info

type SpringCloudFunc 

type SpringCloudFunc struct{ sdk.Pik }

SpringCloudFunc exploits SpEL injection in Spring Cloud Function's routing-expression header (CVE-2022-22963).

func (*SpringCloudFunc) Check 

func (m *SpringCloudFunc) Check(run *sdk.Context) (sdk.CheckResult, error)

func (*SpringCloudFunc) Exploit 

func (m *SpringCloudFunc) Exploit(run *sdk.Context) error

func (*SpringCloudFunc) Info 

func (m *SpringCloudFunc) Info() sdk.Info

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.