CVE-2020-7246

This is an exploit to automatically upload a PHP web shell to the qdPM 9.1 platform via the "upload a profile photo" feature. This method also bypasses the fix put into place from a previous CVE

qdPM v91 Authenticated RCE Exploit This is an exploit to automatically upload a PHP web shell to the qdPM 91 platform via the "upload a profile photo" feature This method also bypasses the fix put into place from a previous CVE Vulnerability Information CVE: CVE-2020-7246 NVD Published Date: 01/21/2020 Base Score 88 (HIGH) Vulnerability Type Web Exploit

A Docker image vulnerable to CVE-2020-7246.

CVE-2020-7246 (qdPM 91) For educational purposes only See Reference for the details Run $ git clone githubcom/arafatansari/SecAssignmentgit $ cd SecAssignment $ docker build -t cve-assignment:ine $ docker run -it -p 80:80 cve-assignment:ine $ service apache2 start | service mysql start Exploit $ python Exploit/exploitpy -u

CVE-2020-7246 (qdPM 91) For educational purposes only See Reference for the details Run $ git clone githubcom/arafatansari/QDPMSECgit $ cd QDPMSEC $ docker build -t cve-assignment:ine $ docker run -it -p 80:80 cve-assignment:ine Installation Checking Environment Setting up SQL Server Create Admin login/password In ord

Sharing POC's of latest discovery

Public_Disclosure Sharing POC's of latest discovery Unauthenticated RCE in learnnowtelekomde/ Vulnerability – Insecure Deserialzation Vulnerability Vulnerability Description – Telerik UI for ASPNET (Version - 201631018) was being used by the application It suffers from a known vulnerability CVE-2019-18935 (Insecure Deserialization) Using basic fi