2016
06.14

Apache Continuum 1.4.2 Arbitrary Command Execution

Category: exploit / Tags: no tag / Add Comment

This Metasploit module exploits a command injection in Apache Continuum versions 1.4.2 and below. By injecting a command into the installation.varValue POST parameter to /continuum/saveInstallation.action, a shell can be spawned.

No Comment.

Add Your Comment

Your Comment

You must be logged in to post a comment.