Progress MOVEit Transfer contains a SQL injection vulnerability that could allow an unauthenticated attacker to gain unauthorized access to MOVEit Transfer's database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database in addition to executing SQL statements that alter or delete database elements.
PoC: CVE-2023-34362
CVE-2023-34362: MOVEit Transfer Unauthenticated RCE
PoC: CVE-2023-34362
MOVEit CVE-2023-34362
PoC: MOVEit-Exploit
an exploit of POC for CVE-2023-34362 affecting MOVEit Transfer
PoC: CVE-2023-34362
POC for CVE-2023-34362 affecting MOVEit Transfer
PoC: MOVEit_CVE-2023-34362_IOCs
CVE-2023-34362-IOCs. More information on Deep Instinct's blog site.
PoC: Multi-Stage-Exploitation-and-Detection-Engineering-Analysis-of-CVE-2023-34362-in-MOVEit-Transfer
This repository contains an academic and technical analysis of CVE-2023-34362, a critical SQL injection vulnerability affecting the MOVEit Transfer application, a widely used enterprise Managed File Transfer (MFT) platform. The project was developed as part of the CYB625 – Ethical Hacking & Penetration Testing course at Pace University.
PoC: MOVEit-Transfer-Data-Breach-Analysis.
Detailed analysis of the 2023 MOVEit Transfer data breach (CVE-2023-34362) for CS50 Cybersecurity. This project explores the technical impact of unauthenticated SQL Injection and its consequences for global data privacy, affecting 2,700+ organizations. Special thanks to Professor David J. Malan and the CS50 staff.
PoC: moveit-transfer-2023-breach
MOVEit Transfer 2023 mass data breach (CVE-2023-34362)
PoC: CVE-2023-34362-Defense-Package
Threat-Informed Detection & Mitigation Package for MOVEit Transfer Vulnerability
PoC: MOVEit-CVE-2023-34362
This repository investigates the exploitation of CVE-2023-34362 in the MOVEit file transfer server by the TA505 (Cl0p) ransomware group. It explores the group's tactics and past campaigns targeting file transfer applications, aiming to enhance understanding and defensive measures against such threats.
PoC: CVE-2023-34362-RCE
Modified RCE with a remote shell and logging
PoC: MOVEit-CVE-2023-34362
A video presentation analysing the technical details, scale and lessons to be learned from the MOVEit CVE-2023=3462(CS50 Introduction to Cyber Security Finale Project)
PoC: moveit-payload-decrypt-CVE-2023-34362
This shellscript given the OrgKey 0 will parse the header of the base64 artifacts found in MOVEit Logs and decrypt the Serialized object used a payload
PoC: MOVEit-CVE-2023-34362
Repository with everything I have tracking the impact of MOVEit CVE-2023-34362
PoC: cve-2023-34362-iocs
CSV File Containing CVE-2023-34362 IOCs
PoC: CVE-2023-34362-nhjxn
An investigation into CVE-2023-34362.
PoC: CVE-2023-34362
An investigation into CVE-2023-34362.
Get alerted for CVEs like this
Register your stack and get notified within minutes when a matching CVE drops.
Start monitoring free