Published: 08/03/2020 Updated: 07/10/2022

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 905

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

lib/ajaxHandlers/ajaxAddTemplate.php in rConfig up to and including 3.94 allows remote malicious users to execute arbitrary OS commands via shell metacharacters in the fileName POST parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
rconfig rconfig

# Exploit Title: rConfig 393 - 'ajaxAddTemplatephp' Authenticated Remote Code Execution # Date: 2020-03-08 # Exploit Author: Engin Demirbilek # Vendor Homepage: wwwrconfigcom/ # Version: rConfig <= 394 # Tested on: centOS # CVE: CVE-2020-10221 # Advisory link: engindemirbilekgithubio/rconfig-393-rce import requests impor ...

rConfig version 393 suffers from an authenticated ajaxAddTemplatephp remote code execution vulnerability ...

ZeroDay exploits that i have shared. #CentreonExploit #rConfigExploit #PandoraFMSExploit

Public Exploits ZeroDay exploits that i have shared CVE-2020-13252 Centreon <= 191015 Authenticated RCE Exploit-DB link: wwwexploit-dbcom/exploits/48256 Advisory link: engindemirbilekgithubio/centreon-1910-rce CVE-2020-10221 rConfig 393 Authenticated RCE Exploit-DB link: wwwexploit-dbcom/exploits/48207 Advisory link: engindemi

CWE-78 https://github.com/EnginDemirbilek/EnginDemirbilek.github.io/blob/master/rconfig-3.93-rce.html https://engindemirbilek.github.io/rconfig-3.93-rce http://packetstormsecurity.com/files/156687/rConfig-3.93-Authenticated-Remote-Code-Execution.html https://cwe.mitre.org/data/definitions/78.html https://nvd.nist.gov https://github.com/EnginDemirbilek/PublicExploits https://www.exploit-db.com/exploits/48207

CVE-2020-10221

Vulnerability Summary

Vulnerability Trend

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect