Lucene search
+L

7 matches found

Packet Storm
Packet Storm
added 2020/06/30 12:0 a.m.209 views

ATutor 2.2.4 Directory Traversal / Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ATutor 2.2.4 - Directory Traversal / Remote Code Execution, ', 'Description' = %q This module exploits an arbitrary file upload vulnerability...

6.8CVSS0.5AI score0.73317EPSS
Exploits11
0day.today
0day.today
added 2019/08/06 12:0 a.m.57 views

ATutor 2.2.4 Arbitrary File Upload / Command Execution Exploit

Exploit for php platform in category web applications !/usr/bin/env python Exploit Title: ATutor 2.2.4 'languageimport' Arbitrary File Upload / RCE CVE-2019-12169 Date: 5/24/19 Exploit Author: liquidsky JMcPeters Vendor Homepage: https://atutor.github.io/ Software Link:...

6.8CVSS8.6AI score0.73317EPSS
Exploits11
Packet Storm
Packet Storm
added 2019/08/05 12:0 a.m.156 views

ATutor 2.2.4 Arbitrary File Upload / Command Execution

!/usr/bin/env python Exploit Title: ATutor 2.2.4 'languageimport' Arbitrary File Upload / RCE CVE-2019-12169 Date: 5/24/19 Exploit Author: liquidsky JMcPeters Vendor Homepage: https://atutor.github.io/ Software Link: https://sourceforge.net/projects/atutor/files/latest/download Version: 2.2.4...

6.8CVSS0.2AI score0.73317EPSS
Exploits11
NVD
NVD
added 2019/06/03 8:29 p.m.12 views

CVE-2019-12169

ATutor 2.2.4 allows Arbitrary File Upload and Directory Traversal, resulting in remote code execution via a ".." pathname in a ZIP archive to the mods/core/languages/languageimport.php aka Import New Language or mods/standard/patcher/indexadmin.php aka Patcher component...

8.8CVSS8.9AI score0.73317EPSS
Exploits11References5
Cvelist
Cvelist
added 2019/06/03 8:0 p.m.30 views

CVE-2019-12169

ATutor 2.2.4 allows Arbitrary File Upload and Directory Traversal, resulting in remote code execution via a ".." pathname in a ZIP archive to the mods/core/languages/languageimport.php aka Import New Language or mods/standard/patcher/indexadmin.php aka Patcher component...

8.9AI score0.73317EPSS
Exploits11References5
CVE
CVE
added 2019/06/03 8:0 p.m.160 views

CVE-2019-12169

CVE-2019-12169 affects ATutor 2.2.4 and enables remote code execution via an arbitrary file upload and directory traversal. The vulnerability is triggered by a malformed ZIP archive exploiting a ".." pathname to drop PHP payloads into either mods/_core/languages/language_import.php (Import New La...

8.8CVSS8.7AI score0.73317EPSS
Exploits11References5Affected Software1
GithubExploit
GithubExploit
added 2019/05/24 5:15 a.m.135 views

Exploit for Path Traversal in Atutor

ATutor 2.2.4 Arbitrary File Upload / RCE CVE-2019-12169 - E...

9CVSS8.9AI score0.73317EPSS
Exploits12
Rows per page
Query Builder