CVE-2019-16113

This is a python implementaiton PoC for the Bludit Directory Traversal Image File Upload Vulnerability

CVE-2019-16113 Bludit 3.9.2 allows remote code execution via bl-kernel/ajax/upload-images.php because PHP code can be entered with a .jpg (or .png) file name, and then this PHP code can write other PHP code to a ../ pathname.

Original credit: christasa - Original discovery sinn3r - Metasploit Module

https://www.exploit-db.com/exploits/47699

Name		Name	Last commit message	Last commit date
Latest commit History 3 Commits
README.md		README.md
cve-2019-16113.py		cve-2019-16113.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

cve-2019-16113.py

cve-2019-16113.py

Repository files navigation

CVE-2019-16113

About

Releases

Packages

Languages

ynots0ups/CVE-2019-16113

Folders and files

Latest commit

History

README.md

README.md

cve-2019-16113.py

cve-2019-16113.py

Repository files navigation

CVE-2019-16113

About

Resources

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages