cve/CVE-2015-2844.md at 9cc2023bd8dbe0ab8c5f051fa9a43f1e04594987

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 02:31:38 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

862 B

Raw Blame History

CVE-2015-2844

Description

The cpanel function in go_site.php in GoAutoDial GoAdmin CE before 3.3-1420434000 allows remote attackers to execute arbitrary commands via the $action portion of the PATH_INFO.

POC

Reference

http://packetstormsecurity.com/files/131543/GoAutoDial-SQL-Injection-Command-Execution-File-Upload.html
https://www.exploit-db.com/exploits/36807/

Github

https://github.com/CodeXTF2/goautodial-rce-exploit
https://github.com/TarunYenni/GoAutoDial-CE-3.3-Exploit-Authentication-Bypass-Command-Injection

862 B Raw Blame History

CVE-2015-2844

Description

POC

Reference

Github

862 B

Raw Blame History