Welcome!

By registering with us, you'll be able to discuss, share and private message with other members of our community.

SignUp Now!
adv ex on 5 january 2024
adv ex on 22 February 2024
banner Expire 26 October 2024
Rescator cvv and dump shop
banner expire at 13 May

Yale lodge shop
UniCvv
banner Expire 1 April 2021

Rconfig 3.x Chained Remote Code Execution

Cowboy

Cowboy

TRUSTED VENDOR
Joined
Apr 18, 2024
Messages
301
This Metasploit module takes advantage of a command injection vulnerability in the path parameter of the ajax archive file functionality within the rConfig web interface in order to execute the payload. Valid credentials for a user with administrative privileges are required.

However, this module can bypass authentication via SQL injection.

Site: https://dl.packetstormsecurity.net/2003-exploits/rconfig_ajaxarchivefiles_rce.rb.txt
 
You must log in or register to reply here.

Online statistics

Members online
4
Guests online
167
Total visitors
171
Totals may include hidden visitors.

Latest posts

Newest members

Stay Connected

Top Bottom