3 matches found
VICIdial Manager Send OS Command Injection
No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient def...
CVE-2013-4467
CVE-2013-4467 affects VICIdial's web interface (agent interface: agc/) and specifically the file agc/manager_send.php. The root cause is unsanitized user input used to build shell commands via PHP passthru(), enabling command execution. Affected versions include VICIdial 2.8-403a, 2.7, and 2.7RC1...
CVE-2013-4467
creationtimestamp| type| source ---|---|--- 2013-11-08 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/29513 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/vicidialmanagersendcmdexec.rb 2025-02-06...