listenquiet
/ gist:7926519f11ac3fe41e0487b80ce1e417
Created
January 16, 2025 03:31
Dinky has a security issue due to improper permission management.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [CVE ID] | |
| CVE-2024-22928 | |
| [PRODUCT] | |
| dinky | |
| [VERSION] | |
| dinky < v1.0.0 | |
| [PROBLEM TYPE] | |
| Privilege escalation | |
| [DESCRIPTION] | |
| There is a flaw in dinky user rights management. Ordinary users can vertically exceed their rights and obtain the same rights as admin. Ordinary users can vertically exceed their rights and obtain the same rights as admin |
listenquiet
/ server.py
Created
September 13, 2022 06:30
— forked from mdonkers/server.py
Simple Python 3 HTTP server for logging all GET and POST requests
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/usr/bin/env python3 | |
| """ | |
| Very simple HTTP server in python for logging requests | |
| Usage:: | |
| ./server.py [<port>] | |
| """ | |
| from http.server import BaseHTTPRequestHandler, HTTPServer | |
| import logging | |
| class S(BaseHTTPRequestHandler): |