Fix: Address PR review feedback for Ollama RCE module
Co-Authored-By: msutovsky-r7 <190406428+msutovsky-r7@users.noreply.github.com>
This commit is contained in:
Valentin Lobstein
@@ -46,6 +46,13 @@ curl http://127.0.0.1:11434/api/version
|
||||
|
||||
Writable directory on the target for payload files. Defaults to `/tmp`.
|
||||
|
||||
### DEPTH
|
||||
|
||||
Number of `../` sequences used in the path traversal to reach the root
|
||||
filesystem from Ollama's blob storage directory. Defaults to `14`, which works
|
||||
for the standard Docker image. Adjust if the target uses a non-default
|
||||
`OLLAMA_MODELS` path with a different directory depth.
|
||||
|
||||
### SRVHOST / SRVPORT
|
||||
|
||||
The address and port for the rogue OCI registry. `SRVHOST` must be a routable
|
||||
|
||||
Reference in New Issue
Block a user