7 matches found
Composr-CMS 10.0.39 Remote Code Execution
Exploit Title: Composr-CMS Version Commandr !/usr/bin/python3 import requests from bs4 import BeautifulSoup import time cookies = 'hascookies': '1', 'PHPSESSID': 'ddf2e7c8ff1000a7c27b132b003e1f5c', You need to change this as it is dynamic 'commandrdir': 'L3Jhdy91cGxvYWRzL2ZpbGVkdW1wLw%3D%3D',...
Composr CMS Version <=10.0.39 - Authenticated Remote Code Execution Exploit
Exploit Title: Composr-CMS Version Commandr !/usr/bin/python3 import requests from bs4 import BeautifulSoup import time cookies = 'hascookies': '1', 'PHPSESSID': 'ddf2e7c8ff1000a7c27b132b003e1f5c', You need to change this as it is dynamic 'commandrdir': 'L3Jhdy91cGxvYWRzL2ZpbGVkdW1wLw%3D%3D',...
Composr-CMS Version <=10.0.39 - Authenticated Remote Code Execution
Exploit Title: Composr-CMS Version Commandr !/usr/bin/python3 import requests from bs4 import BeautifulSoup import time cookies = 'hascookies': '1', 'PHPSESSID': 'ddf2e7c8ff1000a7c27b132b003e1f5c', You need to change this as it is dynamic 'commandrdir': 'L3Jhdy91cGxvYWRzL2ZpbGVkdW1wLw%3D%3D',...
CVE-2021-46360
creationtimestamp| type| source ---|---|--- 2022-02-09 16:12:48+00:00| seen| https://t.me/cibsecurity/37053 2023-03-25 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/51060 2024-01-08 12:52:34+00:00| seen| https://t.me/arpsyndicate/2640...
CVE-2021-46360
Authenticated remote code execution RCE in Composr-CMS 10.0.39 and earlier allows remote attackers to execute arbitrary code via uploading a PHP shell through /adminzone/index.php?page=admin-commandr...
CVE-2021-46360
Authenticated remote code execution RCE in Composr-CMS 10.0.39 and earlier allows remote attackers to execute arbitrary code via uploading a PHP shell through /adminzone/index.php?page=admin-commandr...
CVE-2021-46360
Composr-CMS 10.0.39 and earlier is affected by an authenticated remote code execution vulnerability. The issue allows an authenticated attacker to upload a PHP shell via /adminzone/index.php?page=admin-commandr, enabling arbitrary code execution on the server. Public exploit references exist (e.g...