更新: 219 个文件 - 2026-03-16 23:45:01

06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063113/compose/compose.yaml

@@ -0,0 +1,8 @@
+services:
+  app:
+    image: gitea/gitea:1.22.6
+    ports:
+    - 18085:3000
+networks:
+  labnet:
+    driver: bridge

06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063113/logs/attack.json

@@ -0,0 +1,10 @@
+{
+  "steps": [
+    {
+      "kind": "note",
+      "tool": null,
+      "args": [],
+      "status": "skipped"
+    }
+  ]
+}

06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063113/logs/baseline.json

@@ -0,0 +1,8 @@
+{
+  "observations": [
+    {
+      "url": "http://127.0.0.1:18085/",
+      "error": "HTTPConnectionPool(host='127.0.0.1', port=18085): Max retries exceeded with url: / (Caused by NewConnectionError(\"HTTPConnection(host='127.0.0.1', port=18085): Failed to establish a new connection: [Errno 61] Connection refused\"))"
+    }
+  ]
+}

06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/compose/compose.yaml

@@ -0,0 +1,8 @@
+services:
+  app:
+    image: gitea/gitea:1.22.6
+    ports:
+    - 18085:3000
+networks:
+  labnet:
+    driver: bridge

06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/report.html

@@ -0,0 +1,26 @@
+<!doctype html>
+<html><head><meta charset='utf-8'><title>websafe run report</title>
+<style>body{font-family:ui-monospace,Menlo,monospace;margin:2rem;line-height:1.5;} code,pre{background:#f5f5f5;padding:.2rem .4rem;} .grid{display:grid;grid-template-columns:repeat(2,minmax(0,1fr));gap:1rem;} .card{border:1px solid #ddd;padding:1rem;border-radius:.5rem;}</style>
+</head><body>
+<h1>Run gitea-gitea--CVE-2025-68939-20260317063330</h1>
+<div class='grid'>
+<div class='card'><strong>Advisory</strong><br><code>gitea--CVE-2025-68939</code></div>
+<div class='card'><strong>Status</strong><br><code>blocked-artifact</code></div>
+<div class='card'><strong>Profile</strong><br><code>file-upload-generic</code></div>
+<div class='card'><strong>Artifact Mode</strong><br><code>official-image</code></div>
+</div>
+<h2>Mermaid Timeline</h2>
+<pre>flowchart LR
+A[&quot;Select Advisory&quot;] --&gt; B[&quot;Resolve Repro Profile&quot;]
+B --&gt; C[&quot;Provision Compose Environment&quot;]
+C --&gt; D[&quot;Baseline Snapshot&quot;]
+D --&gt; E[&quot;Controlled Attack Steps&quot;]
+E --&gt; F[&quot;Browser Replay&quot;]
+F --&gt; G[&quot;Collect Logs and Evidence&quot;]
+G --&gt; H[&quot;Update Registry and Reports&quot;]
+H --&gt; I[&quot;Blocked: unable to get image &#x27;gitea/gitea:1.22.6&#x27;: Cannot connect to &quot;]</pre>
+<h2>Evidence</h2><ul>
+<li><code>/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/logs/attack.json</code></li>
+<li><code>/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/logs/baseline.json</code></li>
+</ul>
+</body></html>

06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/report.md

@@ -0,0 +1,30 @@
+# Run gitea-gitea--CVE-2025-68939-20260317063330
+
+> `LAB ONLY` | `AUTHORIZED TARGETS ONLY` | 自动生成 run bundle
+
+- Advisory: `gitea--CVE-2025-68939`
+- 系统: `gitea`
+- Repro Profile: `file-upload-generic`
+- 实证状态: `blocked-artifact`
+- 实证方式: `real`
+- Artifact 模式: `official-image`
+- 启动时间: `2026-03-17T06:33:30+00:00`
+- 完成时间: `2026-03-17T06:33:30+00:00`
+- 阻塞原因: `unable to get image 'gitea/gitea:1.22.6': Cannot connect to the Docker daemon at unix:///Users/x/.docker/run/docker.sock. Is the docker daemon running?`
+
+## 运行时间线
+
+- Mermaid: [timeline.mmd](/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/timeline.mmd)
+
+## 证据摘要
+
+- Baseline: `0`
+- 攻击步骤: `0`
+- 浏览器证据: `0`
+- 容器日志: `0`
+- 请求日志: `2`
+
+## 最小化验证说明
+
+- 仅限自有资产、本地靶场或已授权实验目标。
+- 默认执行 minimal-proof；不会把破坏性或不可回滚动作作为默认路径。

06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/run.json

@@ -0,0 +1,31 @@
+{
+  "run_id": "gitea-gitea--CVE-2025-68939-20260317063330",
+  "system_id": "gitea",
+  "advisory_id": "gitea--CVE-2025-68939",
+  "repro_profile_id": "file-upload-generic",
+  "verification_status": "blocked-artifact",
+  "verification_mode": "real",
+  "artifact_mode": "official-image",
+  "target_env": "local-docker",
+  "compose_services": [
+    "app"
+  ],
+  "baseline_refs": [],
+  "attack_steps": [],
+  "browser_refs": [],
+  "container_log_refs": [],
+  "request_log_refs": [
+    "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/logs/attack.json",
+    "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/logs/baseline.json"
+  ],
+  "timeline": [],
+  "started_at": "2026-03-17T06:33:30+00:00",
+  "finished_at": "2026-03-17T06:33:30+00:00",
+  "blocked_reason": "unable to get image 'gitea/gitea:1.22.6': Cannot connect to the Docker daemon at unix:///Users/x/.docker/run/docker.sock. Is the docker daemon running?",
+  "report_refs": {
+    "bundle_dir": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330",
+    "report_md": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/report.md",
+    "report_html": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/report.html",
+    "timeline": "/Users/x/websafe/06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/timeline.mmd"
+  }
+}

06-case-studies/generated-runs/gitea-gitea--CVE-2025-68939-20260317063330/timeline.mmd

@@ -0,0 +1,9 @@
+flowchart LR
+A["Select Advisory"] --> B["Resolve Repro Profile"]
+B --> C["Provision Compose Environment"]
+C --> D["Baseline Snapshot"]
+D --> E["Controlled Attack Steps"]
+E --> F["Browser Replay"]
+F --> G["Collect Logs and Evidence"]
+G --> H["Update Registry and Reports"]
+H --> I["Blocked: unable to get image 'gitea/gitea:1.22.6': Cannot connect to "]

06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/compose/compose.yaml

@@ -0,0 +1,8 @@
+services:
+  app:
+    image: node:22-alpine
+    ports:
+    - 18090:3000
+networks:
+  labnet:
+    driver: bridge

06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/logs/attack.json

@@ -0,0 +1,10 @@
+{
+  "steps": [
+    {
+      "kind": "note",
+      "tool": null,
+      "args": [],
+      "status": "planned"
+    }
+  ]
+}

06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/logs/baseline.json

@@ -0,0 +1,8 @@
+{
+  "observations": [
+    {
+      "url": "http://127.0.0.1:18090/",
+      "error": "HTTPConnectionPool(host='127.0.0.1', port=18090): Max retries exceeded with url: / (Caused by NewConnectionError(\"HTTPConnection(host='127.0.0.1', port=18090): Failed to establish a new connection: [Errno 61] Connection refused\"))"
+    }
+  ]
+}

06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/report.html

@@ -0,0 +1,26 @@
+<!doctype html>
+<html><head><meta charset='utf-8'><title>websafe run report</title>
+<style>body{font-family:ui-monospace,Menlo,monospace;margin:2rem;line-height:1.5;} code,pre{background:#f5f5f5;padding:.2rem .4rem;} .grid{display:grid;grid-template-columns:repeat(2,minmax(0,1fr));gap:1rem;} .card{border:1px solid #ddd;padding:1rem;border-radius:.5rem;}</style>
+</head><body>
+<h1>Run nextjs-nextjs--CVE-2025-29927-20260317063047</h1>
+<div class='grid'>
+<div class='card'><strong>Advisory</strong><br><code>nextjs--CVE-2025-29927</code></div>
+<div class='card'><strong>Status</strong><br><code>triage-manual</code></div>
+<div class='card'><strong>Profile</strong><br><code>authz-bypass-generic</code></div>
+<div class='card'><strong>Artifact Mode</strong><br><code>official-source</code></div>
+</div>
+<h2>Mermaid Timeline</h2>
+<pre>flowchart LR
+A[&quot;Select Advisory&quot;] --&gt; B[&quot;Resolve Repro Profile&quot;]
+B --&gt; C[&quot;Provision Compose Environment&quot;]
+C --&gt; D[&quot;Baseline Snapshot&quot;]
+D --&gt; E[&quot;Controlled Attack Steps&quot;]
+E --&gt; F[&quot;Browser Replay&quot;]
+F --&gt; G[&quot;Collect Logs and Evidence&quot;]
+G --&gt; H[&quot;Update Registry and Reports&quot;]
+H --&gt; I[&quot;Blocked: dry-run only&quot;]</pre>
+<h2>Evidence</h2><ul>
+<li><code>/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/logs/attack.json</code></li>
+<li><code>/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/logs/baseline.json</code></li>
+</ul>
+</body></html>

06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/report.md

@@ -0,0 +1,30 @@
+# Run nextjs-nextjs--CVE-2025-29927-20260317063047
+
+> `LAB ONLY` | `AUTHORIZED TARGETS ONLY` | 自动生成 run bundle
+
+- Advisory: `nextjs--CVE-2025-29927`
+- 系统: `nextjs`
+- Repro Profile: `authz-bypass-generic`
+- 实证状态: `triage-manual`
+- 实证方式: `real`
+- Artifact 模式: `official-source`
+- 启动时间: `2026-03-17T06:30:47+00:00`
+- 完成时间: `2026-03-17T06:30:47+00:00`
+- 阻塞原因: `dry-run only`
+
+## 运行时间线
+
+- Mermaid: [timeline.mmd](/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/timeline.mmd)
+
+## 证据摘要
+
+- Baseline: `1`
+- 攻击步骤: `1`
+- 浏览器证据: `0`
+- 容器日志: `0`
+- 请求日志: `2`
+
+## 最小化验证说明
+
+- 仅限自有资产、本地靶场或已授权实验目标。
+- 默认执行 minimal-proof；不会把破坏性或不可回滚动作作为默认路径。

06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/run.json

@@ -0,0 +1,40 @@
+{
+  "run_id": "nextjs-nextjs--CVE-2025-29927-20260317063047",
+  "system_id": "nextjs",
+  "advisory_id": "nextjs--CVE-2025-29927",
+  "repro_profile_id": "authz-bypass-generic",
+  "verification_status": "triage-manual",
+  "verification_mode": "real",
+  "artifact_mode": "official-source",
+  "target_env": "local-docker",
+  "compose_services": [
+    "app"
+  ],
+  "baseline_refs": [
+    "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/logs/baseline.json"
+  ],
+  "attack_steps": [
+    {
+      "kind": "note",
+      "tool": null,
+      "args": [],
+      "status": "planned"
+    }
+  ],
+  "browser_refs": [],
+  "container_log_refs": [],
+  "request_log_refs": [
+    "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/logs/attack.json",
+    "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/logs/baseline.json"
+  ],
+  "timeline": [],
+  "started_at": "2026-03-17T06:30:47+00:00",
+  "finished_at": "2026-03-17T06:30:47+00:00",
+  "blocked_reason": "dry-run only",
+  "report_refs": {
+    "bundle_dir": "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047",
+    "report_md": "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/report.md",
+    "report_html": "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/report.html",
+    "timeline": "/Users/x/websafe/06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/timeline.mmd"
+  }
+}

06-case-studies/generated-runs/nextjs-nextjs--CVE-2025-29927-20260317063047/timeline.mmd

@@ -0,0 +1,9 @@
+flowchart LR
+A["Select Advisory"] --> B["Resolve Repro Profile"]
+B --> C["Provision Compose Environment"]
+C --> D["Baseline Snapshot"]
+D --> E["Controlled Attack Steps"]
+E --> F["Browser Replay"]
+F --> G["Collect Logs and Evidence"]
+G --> H["Update Registry and Reports"]
+H --> I["Blocked: dry-run only"]