Skip to content

TheCyberGeek/CVE-2020-5844

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
CVE-2020-5844.py
CVE-2020-5844.py
 
 
README.md
README.md
 
 

Repository files navigation

CVE-2020-5844

Authenticated RCE in PandoraFMS 7.0-NG 742

Admin privileged attackers can upload malicious PHP documents. By decoding the base64 file location users can gain a shell as apache user.

Discovered by TheCyberGeek

PoC python script

Usage: python3 CVE-2020-5844.py URL USER PASS PHP_REVERSE_SHELL
Ex: python3 CVE-2020-5844.py http://10.0.0.2/pandora_console admin pandora reverse.php

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

6 stars

Watchers

2 watching

Forks

9 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages