CVEs-PoC/2017/CVE-2017-14596.md

CVE-2017-14596

Description

In Joomla! before 3.8.0, inadequate escaping in the LDAP authentication plugin can result in a disclosure of a username and password.

POC

Reference

• https://blog.ripstech.com/2017/joomla-takeover-in-20-seconds-with-ldap-injection-cve-2017-14596/
• https://blog.ripstech.com/2017/joomla-takeover-in-20-seconds-with-ldap-injection-cve-2017-14596/

Github

• https://github.com/ARPSyndicate/cvemon
• https://github.com/SexyBeast233/SecBooks
• https://github.com/trganda/dockerv