Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/firefart/CVE-2018-7600
CVE-2018-7600 - Drupal 7.x RCE
https://github.com/firefart/CVE-2018-7600
Last synced: about 2 months ago
JSON representation
CVE-2018-7600 - Drupal 7.x RCE
- Host: GitHub
- URL: https://github.com/firefart/CVE-2018-7600
- Owner: firefart
- Created: 2018-04-16T20:16:21.000Z (over 6 years ago)
- Default Branch: master
- Last Pushed: 2018-04-18T20:34:19.000Z (over 6 years ago)
- Last Synced: 2024-10-14T17:17:33.893Z (about 2 months ago)
- Language: Python
- Size: 7.81 KB
- Stars: 71
- Watchers: 9
- Forks: 38
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
- awesome-hacking-lists - firefart/CVE-2018-7600 - CVE-2018-7600 - Drupal 7.x RCE (Python)
README
# CVE-2018-7600
CVE-2018-7600 - Drupal 7.x RCEDrupal < 7.58 unauthenticated RCE
Requirements
- python3
- python requests (pip install requests)Usage
- Install dependencies
- modify the HOST variable in the script
- run the code
- winJust install requests (pip install requests), edit the file to change the host and run the exploit:
```
python .\poc.py
uid=33(www-data) gid=33(www-data) groups=33(www-data)
[{"command":"settings",......
```