Skip to content
/ pwn-vbulletin Public

Identify vulnerable (RCE) vBulletin 5.0.0 - 5.5.4 instances using Shodan (CVE-2019-16759)

3 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

andripwn/pwn-vbulletin

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits
.gitignore
.gitignore
 
 
README.md
README.md
 
 
bench.py
bench.py
 
 
demo.png
demo.png
 
 
exploit.py
exploit.py
 
 
requirements.txt
requirements.txt
 
 
vbullet-443
vbullet-443
 
 
vbullet-80
vbullet-80
 
 
vbulletin-scan.py
vbulletin-scan.py
 
 
vbulletin.png
vbulletin.png
 
 

Repository files navigation

Mass-Pwn-vBulletin

Identify vulnerable (RCE) vBulletin 5.0.0 - 5.5.4 instances using Shodan (CVE-2019-16759)

Bulletin

Demo

Requirements:

  • Python >= 3.5.3
  • asyncio >= 3.4.3
  • aiohttp >= 3.6.1
  • ipaddress
  • termcolor >= 1.1.0
  • tqdm >= 4.36
  • pyfiglet
  • click >= 7.0
  • IPy >= 1.0

Gathering Hosts:

This tool asynchronously iterates over vBulletin hosts on port 443 and 80 and runs a PoC to test if they are vulnerable to CVE-2019-16759. You can use Shodan to gather potential targets:

shodan download vbullet-443 'html:"vbulletin" port:443'
shodan parse vbullet-443.json.gz --fields ip_str > vbullet-443
shodan download vbullet-80 'html:"vbulletin" port:80'
shodan parse vbullet-80.json.gz --fields ip_str > vbullet-80

Special Thanks:

Thanks to the anonymous user who published this 0day over at https://seclists.org/fulldisclosure/2019/Sep/31

Disclaimer:

I am not responsible for what you do with this tool, this is simply for research purposes.

About

Identify vulnerable (RCE) vBulletin 5.0.0 - 5.5.4 instances using Shodan (CVE-2019-16759)

Topics

rce scanner-web remote-code-execution

Resources

Readme
Activity

Stars

3 stars

Watchers

2 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors 2

  •  
  •  

Languages