Locked Exploits Navigate CMS Unauthenticated Remote Code Execution

By 1337day-Exploits
October 5, 2018 in Updated Exploits

Followers 0

Start new topic

Recommended Posts

1337day-Exploits

Posted October 5, 2018

- Share

Posted October 5, 2018

This Metasploit module exploits insufficient sanitization in the database::protect method, of Navigate CMS versions 2.8 and prior, to bypass authentication. The module then uses a path traversal vulnerability in navigate_upload.php that allows authenticated users to upload PHP files to arbitrary locations. Together these vulnerabilities allow an unauthenticated attacker to execute arbitrary PHP code remotely. This Metasploit module was tested against Navigate CMS 2.8.

This is the hidden content, please

Link to comment

Share on other sites

This topic is now closed to further replies.

Followers 0

Go to topic listing

Similar Content
- Scam Pages+Letters+Exploits+Tools Pack [Priv8]
  
  By Alexander007, April 14
  - tools pack
  - exploits
  - (and 2 more)
    
    Tagged with:
    
    tools pack
    
    exploits
    
    scampages
    
    letters
  - 0 replies
  - 130 views
- Offence RAT v2.5
  
  By 2s4cx43k, April 2
  - remotely
  - hacker
  - (and 8 more)
    
    Tagged with:
    
    remotely
    
    hacker
    
    backdoor
    
    malware
    
    trojan
    
    tool
    
    administration
    
    remote
    
    rat
    
    control
  - 0 replies
  - 167 views
- rat Dark-wOrm v0.3.2
  
  By 2s4cx43k, March 25
  - trojan
  - remote administration tool
  - (and 4 more)
    
    Tagged with:
    
    trojan
    
    remote administration tool
    
    remote
    
    control
    
    malware
    
    worm
  - 0 replies
  - 120 views
- rat BX RAT V1.3
  
  By 2s4cx43k, March 7
  - trojan
  - tool
  - (and 2 more)
    
    Tagged with:
    
    trojan
    
    tool
    
    administration
    
    remote
  - 2 replies
  - 297 views
- Bozok RAT 1.5.1
  
  By 2s4cx43k, March 4
  - remote administration tool
  - rat
  - (and 14 more)
    
    Tagged with:
    
    remote administration tool
    
    rat
    
    trojan
    
    malware
    
    hacker
    
    hacked
    
    vnc
    
    remote
    
    control
    
    antiviru
    
    firewall
    
    crack
    
    cracked
    
    free
    
    download
    
    downloads
  - 0 replies
  - 188 views

Sign In

Locked Exploits Navigate CMS Unauthenticated Remote Code Execution

Recommended Posts

1337day-Exploits

Link to comment

Share on other sites

Similar Content

Scam Pages+Letters+Exploits+Tools Pack [Priv8]

Offence RAT v2.5

rat Dark-wOrm v0.3.2

rat BX RAT V1.3

Bozok RAT 1.5.1

Browse

Activity

Store

Important Information