rconfig-exploit For POC CVE-2021-29004: Execute sqlmap -r CVE-2021-29004-POC-reqtxt Don't forget to update your cookies on all the pocs
rConfig 3.9.6 is affected by SQL Injection. A user must be authenticated to exploit the vulnerability. If --secure-file-priv in MySQL server is not set and the Mysql server is the same as rConfig, an attacker may successfully upload a webshell to the server and access it remotely.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
rconfig rconfig 3.9.6 |