exploits

Three exploits for rconfig <= 3.9.4 :

CVE-2019-19509 : authenticated RCE
CVE-2019-19585 : Local Privilege Escalation (root)
CVE-2020-10220 : unauthenticated SQLi
rconfig_root_RCE_unauth.py : chaining the three CVEs above to get root reverse shell 
                              without authentication
rconfig_ajaxarchivefiles_rce.rb : Rconfig 3.x - Chained Remote Code Execution
                                  Metasploit Module (EDB : 48223)

Name		Name	Last commit message	Last commit date
Latest commit History 34 Commits
README.md		README.md
rconfig_CVE-2019-19509.py		rconfig_CVE-2019-19509.py
rconfig_CVE-2019-19585.py		rconfig_CVE-2019-19585.py
rconfig_CVE-2020-10220.py		rconfig_CVE-2020-10220.py
rconfig_ajaxarchivefiles_rce.rb		rconfig_ajaxarchivefiles_rce.rb
rconfig_lpe.sh		rconfig_lpe.sh
rconfig_root_RCE.py		rconfig_root_RCE.py
rconfig_root_RCE_unauth.py		rconfig_root_RCE_unauth.py
rconfig_sqli.py		rconfig_sqli.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

rconfig_CVE-2019-19509.py

rconfig_CVE-2019-19509.py

rconfig_CVE-2019-19585.py

rconfig_CVE-2019-19585.py

rconfig_CVE-2020-10220.py

rconfig_CVE-2020-10220.py

rconfig_ajaxarchivefiles_rce.rb

rconfig_ajaxarchivefiles_rce.rb

rconfig_lpe.sh

rconfig_lpe.sh

rconfig_root_RCE.py

rconfig_root_RCE.py

rconfig_root_RCE_unauth.py

rconfig_root_RCE_unauth.py

rconfig_sqli.py

rconfig_sqli.py

Repository files navigation

exploits

About

Releases

Packages

Languages

v1k1ngfr/exploits-rconfig

Folders and files

Latest commit

History

Repository files navigation

exploits

About

Topics

Resources

Stars

Watchers

Forks

Languages