HoangKien1020 / CVE-2020-10239 Public

Notifications You must be signed in to change notification settings
Fork 2
Star 7

CVE-2020-10239: Incorrect Access Control in com_fields SQL field-RCE- PoC

7 stars 2 forks Branches Tags Activity

Notifications

Name		Name	Last commit message	Last commit date
Latest commit History 4 Commits
README.md		README.md
cve202010239.py		cve202010239.py

Repository files navigation

Made by HK

CVE-2020-10239: Incorrect Access Control in com_fields SQL field - RCE

PoC

Affected version: Joomla core from 3.7.0 to 3.9.15

User requirement: Manager account(Lowest-level in back-end)

Gain access: Change you from Manager to Superadmin, then trigger RCE.

Remote Code Execution (RCE) in Joomla

Run cve202010239.py with your credentials and access link rce:

About

CVE-2020-10239: Incorrect Access Control in com_fields SQL field-RCE- PoC

Report repository

Releases

No releases published

Packages

No packages published

Languages

Python 100.0%