Skip to content

PoC to exploit OCSInventory vulnerabilities (XSS to RCE)

Notifications You must be signed in to change notification settings

xmco/ocsinventory-exploit

Repository files navigation

Exploit for OCS Inventory Reports

RCE through SNMP feature

PoC materials to exploit the RCE on OCS Inventory. The full publicaiton is available on XMCO website :

Usage:
exploit.py <creds> <target>

Note: An admin account is needed to exploit the vulnerability.

XSS to RCE

In order to exploit this scenario, you juste need to upload the page to your server and redirect the victim to the xss-to-rce.html webpage.

About

PoC to exploit OCSInventory vulnerabilities (XSS to RCE)

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published