Exploit for CVE-2024-3640

Name: Exploit for CVE-2024-3640
Rating: 5 (79 reviews)

2025-04-09 | CVSS 7.0

## https://sploitus.com/exploit?id=5E30F575-0143-5DBF-8A11-34EB36D8EAD8
CVE-2024-3640 WafBypass woodpacker插件利用
绕过方式其实就是插入xml注释符进行关键字绕过。

延时检测
![image](https://github.com/user-attachments/assets/7d55d3e0-b3c9-4a0b-a457-28b51fa7af29)

回显命令执行
![image](https://github.com/user-attachments/assets/34fac943-cf8b-49f9-a79e-29d6733f6895)

自定义内存马
![image](https://github.com/user-attachments/assets/757ac07d-53a7-4b77-b6d3-070805af20bf)