mirror of
https://github.com/0xMarcio/cve.git
synced 2026-06-03 08:48:00 +02:00
0xMarcio
1.1 KiB
1.1 KiB
CVE-2020-5776
&color=brightgreen)
Description
Currently, all versions of MAGMI are vulnerable to CSRF due to the lack of CSRF tokens. RCE (via phpcli command) is possible in the event that a CSRF is leveraged against an existing admin session for MAGMI.
POC
Reference
Github
- https://github.com/20142995/nuclei-templates
- https://github.com/404notf0und/CVE-Flow
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ARPSyndicate/kenzer-templates
- https://github.com/Elsfa7-110/kenzer-templates
- https://github.com/alphaSeclab/sec-daily-2020
- https://github.com/merlinepedra/nuclei-templates
- https://github.com/merlinepedra25/nuclei-templates
- https://github.com/sobinge/nuclei-templates