Skip to content

RaspAP CVE-2022-39986#368

Open
girlier wants to merge 15 commits into
cliffe:masterfrom
girlier:RaspAP
Open

RaspAP CVE-2022-39986#368
girlier wants to merge 15 commits into
cliffe:masterfrom
girlier:RaspAP

Conversation

@girlier
Copy link
Copy Markdown

@girlier girlier commented May 27, 2026

RaspAP CVE-2022-39986

HTTP vulnerability module including vulnerable RaspAP application with an example CTF called easy-as-pi.
Simple easy vulnerability that builds quickly and can be exploited through Metasploit.

girlier and others added 15 commits April 10, 2026 14:10
@girlier
Add initial RaspAP command injection module (CVE-2022-39986)
095c4f0
@girlier
Fix 403 Forbidden on main RaspAP webpage
ee86a60 
- Added getConfig() function to raspap.php.erb (required by authenticate.php)
- Added RASPI_AUTH_ENABLED constant to config.php.erb
- Set RASPI_AUTH_ENABLED to false for unauthenticated CTF access
- Main index.php now returns HTTP 200 OK with full RaspAP UI
@girlier
Fix RaspAP module configuration
c2e472e 
- Add getConfig() function to raspap.php for authenticate.php compatibility
- Add RASPI_AUTH_ENABLED constant set to false for unauthenticated access
- Define all RASPI_* constants directly in config.php to bypass defaults.php bug
- Place config.php in includes/ directory (correct location for RaspAP)
- Place raspap.php in config/ directory
@girlier
Add redirect from root URL to RaspAP index.php
2e48a87
@girlier
Remove unnecessary index.html redirect - lighttpd rewrite handles roo…
daa1442 
…t URL
@girlier
Add explicit redirect from root URL to index.php
a812f10
@girlier
Add randomised strong password authentication to RaspAP module
e2a1594 
- Add raspap_password parameter with strong_password_generator
- Enable RASPI_AUTH_ENABLED in config.php
- Create raspap.auth file with bcrypt hashed password
- Add apache2-utils package for htpasswd command
@girlier
Restore missing easy_as_pi scenario sheet
7dd1f0b
@girlier
Fix malformed XML in easy_as_pi scenario
878202e
@girlier
Remove RaspAP README and update module files
465b2bc
@girlier
Disable RaspAP web auth for unauthenticated scenario
8d9417e
@girlier
Default RaspAP port to 80; keep random port optional
1286d0a
@girlier
Rename raspap_cmd_injection module to raspap_rce
4a6530d
@girlier
Use random generated admin password for RaspAP module
fc8c34b
@girlier
Merge branch 'cliffe:master' into RaspAP
d5a0376
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@girlier