Ampferl/security
GitHub: Ampferl/security
个人安全研究漏洞披露仓库,记录 OPNsense 防火墙中发现的多个漏洞的分析报告与 PoC。
Stars: 1 | Forks: 0
# 安全研究
此仓库将包含我正在做的安全相关内容。
在这里你可以找到我撰写的漏洞分析报告和我所发现漏洞的概念验证。你也可以在我的博客上找到更多信息:
## 漏洞
| 标题 | 严重程度 (CVSS) | 参考资料 (CVE, GHSA 等) |
|-------|----------|------------|
| [通过 GeoIP Alias Importer 中的任意文件写入实现 Root RCE](disclosures/001_opnsense-rce-file-write-geoip/README.md) | 严重 (9.9) |- [CVE-2026-57155](https://nvd.nist.gov/vuln/detail/CVE-2026-57155)
- [GHSA-wjqq-rfmm-v5h3](https://github.com/opnsense/core/security/advisories/GHSA-wjqq-rfmm-v5h3)
- [博客文章](https://hackerask.com/posts/opnsense/) | | [通过 HTML 属性突破在防火墙规则/NAT 页面实现存储型 XSS](disclosures/002_opnsense-stored-xss-firewall-rules-nat-attribute/README.md) | 中等 (5.4) |- [CVE-2026-58391](https://nvd.nist.gov/vuln/detail/CVE-2026-58391)
- [GHSA-2xrm-p255-p43h](https://github.com/opnsense/core/security/advisories/GHSA-2xrm-p255-p43h)
- [博客文章](https://hackerask.com/posts/opnsense/) | | [服务:NTP GPS 中的存储型 XSS](disclosures/003_opnsense-stored-xss-ntp-gps/README.md) | 中等 (5.4) |- [CVE-2026-58392](https://nvd.nist.gov/vuln/detail/CVE-2026-58392)
- [GHSA-h793-67jm-j4m5](https://github.com/opnsense/core/security/advisories/GHSA-h793-67jm-j4m5)
- [博客文章](https://hackerask.com/posts/opnsense/) | | [MVC safe-delete 中的 XPath 注入](disclosures/004_opnsense-xpath-injection-mvc-safe-delete/README.md) | 中等 (4.3) |- [CVE-2026-58395](https://nvd.nist.gov/vuln/detail/CVE-2026-58395)
- [GHSA-98h6-479q-9q3w](https://github.com/opnsense/core/security/advisories/GHSA-98h6-479q-9q3w)
- [博客文章](https://hackerask.com/posts/opnsense/) | | [通过证书描述在管理设置中实现存储型 XSS](disclosures/005_opnsense-stored-xss-admin-certificate-description/README.md) | 中等 (5.2) |- [CVE-2026-58394](https://nvd.nist.gov/vuln/detail/CVE-2026-58394)
- [GHSA-8pgr-x852-qx4j](https://github.com/opnsense/core/security/advisories/GHSA-8pgr-x852-qx4j)
- [博客文章](https://hackerask.com/posts/opnsense/) |
- [GHSA-wjqq-rfmm-v5h3](https://github.com/opnsense/core/security/advisories/GHSA-wjqq-rfmm-v5h3)
- [博客文章](https://hackerask.com/posts/opnsense/) | | [通过 HTML 属性突破在防火墙规则/NAT 页面实现存储型 XSS](disclosures/002_opnsense-stored-xss-firewall-rules-nat-attribute/README.md) | 中等 (5.4) |- [CVE-2026-58391](https://nvd.nist.gov/vuln/detail/CVE-2026-58391)
- [GHSA-2xrm-p255-p43h](https://github.com/opnsense/core/security/advisories/GHSA-2xrm-p255-p43h)
- [博客文章](https://hackerask.com/posts/opnsense/) | | [服务:NTP GPS 中的存储型 XSS](disclosures/003_opnsense-stored-xss-ntp-gps/README.md) | 中等 (5.4) |- [CVE-2026-58392](https://nvd.nist.gov/vuln/detail/CVE-2026-58392)
- [GHSA-h793-67jm-j4m5](https://github.com/opnsense/core/security/advisories/GHSA-h793-67jm-j4m5)
- [博客文章](https://hackerask.com/posts/opnsense/) | | [MVC safe-delete 中的 XPath 注入](disclosures/004_opnsense-xpath-injection-mvc-safe-delete/README.md) | 中等 (4.3) |- [CVE-2026-58395](https://nvd.nist.gov/vuln/detail/CVE-2026-58395)
- [GHSA-98h6-479q-9q3w](https://github.com/opnsense/core/security/advisories/GHSA-98h6-479q-9q3w)
- [博客文章](https://hackerask.com/posts/opnsense/) | | [通过证书描述在管理设置中实现存储型 XSS](disclosures/005_opnsense-stored-xss-admin-certificate-description/README.md) | 中等 (5.2) |- [CVE-2026-58394](https://nvd.nist.gov/vuln/detail/CVE-2026-58394)
- [GHSA-8pgr-x852-qx4j](https://github.com/opnsense/core/security/advisories/GHSA-8pgr-x852-qx4j)
- [博客文章](https://hackerask.com/posts/opnsense/) |
标签:CISA项目, PoC, 暴力破解, 漏洞披露, 防御加固