cve/CVE-2017-18048.md at bfbdb15d530107ed63bf22a2f414213ca05fd0ff

admin/cve

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2025-12-30 04:49:42 +00:00

0xMarcio 48a00929ac Removed duplicates

2024-06-18 02:51:15 +02:00

756 B

Raw Blame History

CVE-2017-18048

Description

Monstra CMS 3.0.4 allows users to upload arbitrary files, which leads to remote command execution on the server, for example because .php (lowercase) is blocked but .PHP (uppercase) is not.

POC

Reference

https://securityprince.blogspot.in/2017/12/monstra-cms-304-arbitrary-file-upload.html
https://www.exploit-db.com/exploits/43348/

Github

https://github.com/n0th1n3-00X/security_prince

756 B Raw Blame History

CVE-2017-18048

Description

POC

Reference

Github

756 B

Raw Blame History