Skip to content
/ Searchor-2.4.1-RCE Public

searchor is a ⚡️ Quick and easy search engine queries. Affected versions of this package are vulnerable to Arbitrary Code Execution due to unsafe implementation of eval method.

1 star 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

V35HR4J/Searchor-2.4.1-RCE

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
assets
assets
 
 
README.md
README.md
 
 
exploit.py
exploit.py
 
 

Repository files navigation

Searchor <= 2.4.1 RCE

searchor is a ⚡️ Quick and easy search engine queries. Affected versions of this package are vulnerable to Arbitrary Code Execution due to unsafe implementation of eval method.

Exploit Usage:

python3 exploit.py <url> <command>

Example:

python3 exploit.py http://localhost:5000/search ls

Proof of Concept:

POC

References:

About

searchor is a ⚡️ Quick and easy search engine queries. Affected versions of this package are vulnerable to Arbitrary Code Execution due to unsafe implementation of eval method.

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages