Share
## https://sploitus.com/exploit?id=921E37A4-135B-50A9-B70A-70380BC228EF
# CVE-2024-28995
SolarWinds Serv-U was susceptible to a directory transversal vulnerability that would allow access to read sensitive files on the host machine. 

## INSTALL

git clone https://github.com/gotr00t0day/CVE-2024-28995.git

cd CVE-2024-28995

pip3 install -r requirements.txt

## USAGE

Scan a single target
```
python3 CVE-2024-28995.py -t domain.com
```

Scan a list of domains
```
python3 CVE-2024-28995.py -f domains.txt
```

## ANALYSIS

https://attackerkb.com/topics/2k7UrkHyl3/cve-2024-28995/rapid7-analysis