Jump to content
LeVeL23HackTools
  • Sign Up
Sign in to follow this  
1337day-Exploits

GetSimpleCMS 3.3.15 Remote Code Execution

Recommended Posts

This Metasploit module exploits a remote code execution vulnerability found in GetSimpleCMS versions 3.3.15 and below. An arbitrary file upload (PHPcode for example) vulnerability can be triggered by an authenticated user, however authentication can be bypassed by leaking the cms API key to target the session manager.

Hidden Content

    Give reaction to this post to see the hidden content.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.
Sign in to follow this  

×

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.