CVE-2022-0824, CVE-2022-0829, File Manger privilege exploit
WebminRCE-exploit
CVE-2022-0824, CVE-2022-0829 - File Manger privilege exploit
Vulnerable application to test this PoC can be found here as a docker image
Prerequisites:
Python3
Requests module
Description
Vulnerability
Improper Access Control to Remote Code Execution
Safe users (Unpriviledged user) can access File Manager module, which should be restricted by default