Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/FireFart/CVE-2018-7600
CVE-2018-7600 - Drupal 7.x RCE
https://github.com/FireFart/CVE-2018-7600
Last synced: 3 months ago
JSON representation
CVE-2018-7600 - Drupal 7.x RCE
- Host: GitHub
- URL: https://github.com/FireFart/CVE-2018-7600
- Owner: firefart
- Created: 2018-04-16T20:16:21.000Z (over 6 years ago)
- Default Branch: master
- Last Pushed: 2018-04-18T20:34:19.000Z (over 6 years ago)
- Last Synced: 2024-07-31T14:19:04.806Z (3 months ago)
- Language: Python
- Size: 7.81 KB
- Stars: 72
- Watchers: 9
- Forks: 38
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# CVE-2018-7600
CVE-2018-7600 - Drupal 7.x RCE
Drupal < 7.58 unauthenticated RCE
Requirements
- python3
- python requests (pip install requests)
Usage
- Install dependencies
- modify the HOST variable in the script
- run the code
- win
Just install requests (pip install requests), edit the file to change the host and run the exploit:
```
python .\poc.py
uid=33(www-data) gid=33(www-data) groups=33(www-data)
[{"command":"settings",......
```