https://github.com/rek7/zimbra-rce
Zimbra RCE PoC - CVE-2019-9670 XXE/SSRF
https://github.com/rek7/zimbra-rce
exploit python rce zimbra
Last synced: 11 days ago
JSON representation
Zimbra RCE PoC - CVE-2019-9670 XXE/SSRF
- Host: GitHub
- URL: https://github.com/rek7/zimbra-rce
- Owner: rek7
- License: mit
- Created: 2019-08-16T04:37:11.000Z (over 5 years ago)
- Default Branch: master
- Last Pushed: 2019-08-16T05:54:16.000Z (over 5 years ago)
- Last Synced: 2025-03-30T18:22:09.325Z (about 1 month ago)
- Topics: exploit, python, rce, zimbra
- Language: Python
- Homepage:
- Size: 8.79 KB
- Stars: 23
- Watchers: 3
- Forks: 14
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# Zimbra-RCE
Zimbra RCE CVE-2019-9670
```bash
$ ./zimbra.py -h
__________.__ ___. ___________________ ___________
\____ /|__| _____\_ |______________ \______ \_ ___ \_ _____/
/ / | |/ \| __ \_ __ \__ \ | _/ \ \/ | __)_
/ /_ | | Y Y \ \_\ \ | \// __ \_ | | \ \____| \
/_______ \|__|__|_| /___ /__| (____ / |____|_ /\______ /_______ /
\/ \/ \/ \/ \/ \/ \/
usage: zimbra.py [-h] -u URL -d DTD -n PAYLOAD_NAME -f PAYLOAD_FILE
Zimbra RCE CVE-2019-9670
optional arguments:
-h, --help show this help message and exit
-u URL, --url URL Target url
-d DTD, --dtd DTD Url to DTD
-n PAYLOAD_NAME, --name PAYLOAD_NAME
Name of uploaded payload
-f PAYLOAD_FILE, --file PAYLOAD_FILE
File containing payload
```