Share
## https://sploitus.com/exploit?id=AB806041-5FF3-574A-827E-BFC65CE15CD9
# CVE-2024-32113 Exploit

Apache OFBiz Path Traversal to RCE exploit.

## Description

CVE-2024-32113 is a Path Traversal vulnerability that leads to Remote Code Execution (RCE) in Apache OFBiz.

**Vulnerability**: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Apache OFBiz.

**Affected Versions**: Apache OFBiz before 18.12.13

**Solution**: Upgrade to version 18.12.13

## Usage

```bash
./exploit.py IP:PORT
```

Example:
```bash
./exploit.py 10.10.10.10:8443
```

Once connected, type commands to execute on the remote system.




## References

- https://nvd.nist.gov/vuln/detail/cve-2024-32113
- https://issues.apache.org/jira/browse/OFBIZ-13006
- https://github.com/Mr-xn/CVE-2024-32113

## Disclaimer

This tool is for educational and authorized testing purposes only.