adam/metasploit-gs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Updates addressing review points of space-r7

Browse Source
This commit is contained in:
h00die-gr3y
2023-03-20 21:04:58 +00:00
parent 871a251c94
commit e3df74ee5b
2 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files
documentation/modules/exploit/multi/http/monitorr_webshell_rce_cve_2020_28871.md
+2 -2
View File
@@ -1,7 +1,7 @@
## Vulnerable Application
This module exploits CVE-2020-28871, a Remote Code Execution (RCE) vulnerability in Monitorr, a web application
that allows you to setup a dashboard to monitor various web site/web application up or down state.
This module exploits an arbitrary file upload vulnerability (CVE-2020-28871) that results into an RCE in Monitorr,
a web application that allows you to setup a dashboard to monitor various web site/web application up or down state.
All versions including `v1.7.6m` are vulnerable and no patch is available.
The vulnerability occurs due to a lack of appropriate validation when uploading a malicious `GIF` file with