infosecn1nja
/
metasploit-framework
mirror of https://github.com/infosecn1nja/metasploit-framework.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

modified capitalization and wording

GSoC/Meterpreter_Web_Console
Shelby Pace 2018-07-10 14:12:02 -05:00
parent 44b9798afb
commit 476a3a276f
No known key found for this signature in database
GPG Key ID: B2F3A8B476406857
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
documentation/modules/exploit/multi/http/monstra_fileupload_exec.md
View File

@ -1,12 +1,12 @@
## Description
MonstraCMS 3.0.4 allows users to upload Arbitrary files which leads to a remote command execution on the remote server, an attacker may choose to upload a file containing PHP code and run this code by accessing the resulting PHP file.
MonstraCMS 3.0.4 allows users to upload arbitrary files which leads to remote command execution on the remote server. An attacker may choose to upload a file containing PHP code and run this code by accessing the resulting PHP file.
This module was tested against MonstraCMS 3.0.4.
Additional information and vulnerabilities can be viewed on Exploit-DB [43348](https://www.exploit-db.com/exploits/43348/).
## Vulnerable Application
Available at [Exploit-DB](https://www.exploit-db.com/apps/23663fc7b47c4c1e476b793ea53660bc-monstra-3.0.4.zip)
### Vulnerable Application Installation Setup.
### Vulnerable Application Installation Setup
1. Download Application : `https://www.exploit-db.com/apps/23663fc7b47c4c1e476b793ea53660bc-monstra-3.0.4.zip`
2. Extract : `23663fc7b47c4c1e476b793ea53660bc-monstra-3.0.4.zip`
3. Move In WebDirectory : `C:\xampp\htdocs\`