Exploits / Vulnerability Discovered : 2022-06-14 |
Type : remote |
Platform : multiple
This exploit / vulnerability Sourcegraph gitserver 3.36.3 remote code execution (rce) is for educational purposes only and if it is used you will do on your own risk!
# Sourcegraph prior to 3.37.0 has a remote code execution vulnerability on its gitserver service.
# This is due to lack of restriction on git config execution thus "core.sshCommand" can be passed
# on the HTTP arguments which can contain arbitrary bash commands. Note that this is only possible
# if gitserver is exposed to the attacker. This is tested on Sourcegraph 3.36.3
#
# Exploitation parameters:
# - Exposed Sourcegraph gitserver
# - Existing repo on sourcegraph