CoCalc provides the best real-time collaborative environment for Jupyter Notebooks, LaTeX documents, and SageMath, scalable from individual users to large groups and classes!
CoCalc provides the best real-time collaborative environment for Jupyter Notebooks, LaTeX documents, and SageMath, scalable from individual users to large groups and classes!
Path: blob/master/documentation/modules/auxiliary/gather/microweber_lfi.md
Views: 1904
Vulnerable Applications
Microweber CMS v1.2.10 LFI (Authenticated) has been verified and fixed according to the maintainer of the project. You check out the vulnerability report: https://huntr.dev/bounties/09218d3f-1f6a-48ae-981c-85e86ad5ed8b/
The older versions of Microweber CMS might be vulnerable too. I've not tested the module against the other versions. If you want, you can follow the steps in the official vulnerability report to reproduce the vulnerability against the older versions. (not guaranteed)
Verification Steps
Start
msfconsole
Run
use auxiliary/gather/microweber_lfi
Set
RHOSTS
Set
USERNAME
Set
PASSWORD
Set
LOCAL_FILE_PATH
Run
exploit
Verify that you see
Checking if it's Microweber CMS.
Verify that you see
Microweber CMS has been detected.
Verify that you see
Checking Microweber's version.
Verify that you see
Microweber version 1.2.10
Verify that you see
The target appears to be vulnerable.
Verify that you see
Trying to log in.
Verify that you see
You are logged in
Verify that you see
Uploading LOCAL_FILE_PATH to the backup folder.
Verify that you see
FILE was moved!
Verify that you see
Downloading FILE from the backup folder.
Options
Scenerios
This module has been tested against Microweber CMS v1.2.10 installed on Ubuntu.