Limesurvey-RCE
LimeSurvey Authenticated RCE Proof of Concept:
- Create your files (config.xml and php reverse shell files)
- Create archive with these files
- Login with credentials
- Go Configuration -> Plugins -> Upload & Install
- Choose your zipped file
- Upload
- Install
- Activate plugin
- Start your listener
- Go url+{upload/plugins/#Name/#Shell_file_name}
- Get reverse shell
