CVEs-PoC/2020/CVE-2020-28871.md at dc6e2cf7158eeb24cfecb4d64f4f1da9a8a732e2

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-28 19:41:33 +02:00

Files

T

marc 555e9c7de4 Update Sat May 25 21:48:12 CEST 2024

2024-05-25 21:48:12 +02:00

1.1 KiB

Raw Blame History

CVE-2020-28871

Description

Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload.

POC

Reference

http://packetstormsecurity.com/files/163263/Monitorr-1.7.6m-Bypass-Information-Disclosure-Shell-Upload.html
http://packetstormsecurity.com/files/170974/Monitorr-1.7.6-Shell-Upload.html
http://packetstormsecurity.com/files/171429/Monitorr-1.7.6m-1.7.7d-Remote-Code-Execution.html
https://www.exploit-db.com/exploits/48980

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/ARPSyndicate/kenzer-templates
https://github.com/Live-Hack-CVE/CVE-2020-28871
https://github.com/nastar-id/Monitorr-File-Upload
https://github.com/sec-it/monitorr-exploit-toolkit

1.1 KiB Raw Blame History

CVE-2020-28871

Description

POC

Reference

Github

1.1 KiB

Raw Blame History