10 matches found
HP LinuxKI Command Injection (CVE-2020-7209)
A command injection vulnerability exists in HP LinuxKI. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
LinuxKI Toolset 6.01 CVE-2020-7209 - Remote Command Execution
This Metasploit module exploits a vulnerability in LinuxKI Toolset versions 6.01 and below which allows remote code execution. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LinuxKI Toolset 6....
CVE-2020-7209
creationtimestamp| type| source ---|---|--- 2020-06-10 09:57:27+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/linuxkirce.rb 2020-10-09 13:36:17+00:00| seen| MISP/e439b884-82c9-422e-bee5-4425a48da4c3 2025-02-02 00:00:00+00:00| exploited| The...
LinuxKI Toolset 6.01 Remote Command Execution Exploit
This Metasploit module exploits a vulnerability in LinuxKI Toolset versions 6.01 and below which allows remote code execution. The kivis.php pid parameter received from the user is sent to the shellexec function, resulting in the security vulnerability. This module requires Metasploit:...
LinuxKI Toolset 6.01 Remote Command Execution
This module exploits a vulnerability in LinuxKI Toolset 'LinuxKI Toolset 6.01 Remote Command Execution', 'Description' = %q This module exploits a vulnerability in LinuxKI Toolset MSFLICENSE, 'Author' = 'Cody Winkler', discovery and poc 'numan türle' msf exploit , 'References' = 'EDB', '48483',...
HP LinuxKI 6.01 - Remote Command Injection Exploit
Exploit Title: HP LinuxKI 6.01 - Remote Command Injection Exploit Author: Cody Winkler Vendor Homepage: https://www.hpe.com/us/en/home.html Software Link: https://github.com/HewlettPackard/LinuxKI/releases/tag/v6.0-1 Version: = v6.0-1 Tested on: LinuxKI Docker Image CVE: CVE-2020-7209 !/usr/bin/e...
HP LinuxKI 6.01 - Remote Command Injection
Exploit Title: HP LinuxKI 6.01 - Remote Command Injection Date: 2020-05-17 Exploit Author: Cody Winkler Vendor Homepage: https://www.hpe.com/us/en/home.html Software Link: https://github.com/HewlettPackard/LinuxKI/releases/tag/v6.0-1 Version: = v6.0-1 Tested on: LinuxKI Docker Image CVE:...
HP LinuxKI 6.01 Remote Command Injection
Exploit Title: HP LinuxKI 6.01 - Remote Command Injection Date: 2020-05-17 Exploit Author: Cody Winkler Vendor Homepage: https://www.hpe.com/us/en/home.html Software Link: https://github.com/HewlettPackard/LinuxKI/releases/tag/v6.0-1 Version: = v6.0-1 Tested on: LinuxKI Docker Image CVE:...
CVE-2020-7209
LinuxKI v6.0-1 and earlier is vulnerable to an remote code execution which is resolved in release 6.0-2. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...
CVE-2020-7209
CVE-2020-7209 affects LinuxKI Toolset v6.0-1 and earlier. A remote command execution vulnerability exists in the kivis.php endpoint where the pid parameter is passed to shell_exec, allowing arbitrary commands on the target. The issue is fixed in release 6.0-2. The vulnerability is exploitable ove...