Full title: rConfig <= 3.9.6 Shell Upload Exploit 
Category: web applications
Platform: php
This Metasploit module allows an attacker with a privileged rConfig account to start a reverse shell due to an arbitrary file upload vulnerability in /lib/crud/vendors.crud.php.

# 0day.today @ http://0day.today/