8 matches found
Monitorr 1.7.6 Shell Upload Exploit
Exploit Title: Monitorr v1.7.6 - Unauthenticated File upload to Remote Code Execution Exploit Author: Achuth V P retrymp3 Vendor Homepage: https://github.com/Monitorr/ Software Link: https://github.com/Monitorr/Monitorr Tested on: Ubuntu Version: v1.7.6 Exploit Description: Monitorr v1.7.6 suffer...
Monitorr 1.7.6 Shell Upload
Exploit Title: Monitorr v1.7.6 - Unauthenticated File upload to Remote Code Execution Exploit Author: Achuth V P retrymp3 Date: February 09, 2023 Vendor Homepage: https://github.com/Monitorr/ Software Link: https://github.com/Monitorr/Monitorr Tested on: Ubuntu Version: v1.7.6 Exploit Description...
Monitorr Remote Code Execution (CVE-2020-28871)
A remote code execution vulnerability exists in Monitorr. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2020-28871
creationtimestamp| type| source ---|---|--- 2021-02-10 07:41:00+00:00| seen| https://t.me/cibsecurity/23346 2023-03-22 18:15:21+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/monitorrwebshellrcecve202028871.rb 2025-02-06 03:13:44+00:00| seen|...
CVE-2020-28871
Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload...
CVE-2020-28871
Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload. Recent assessments: noraj at June 22, 2021 4:56pm UTC reported: The uploaded file must have an image magic byte eg. GIF in order to match...
CVE-2020-28871
Remote code execution in Monitorr v1.7.6m in upload.php allows an unauthorized person to execute arbitrary code on the server-side via an insecure file upload...
CVE-2020-28871
Monitorr 1.7.6m (and 1.7.7d and below) is affected by an unauthenticated remote code execution due to an insecure file upload via upload.php. An attacker can upload a crafted PHP file to achieve RCE on the server; exploitation is discussed in public advisories and exploit references. Affected pro...