Navigate CMS Unauthenticated Remote Code Execution

Posted by deepcore on October 6, 2018 – 1:50 pm

This Metasploit module exploits insufficient sanitization in the database::protect method, of Navigate CMS versions 2.8 and prior, to bypass authentication. The module then uses a path traversal vulnerability in navigate_upload.php that allows authenticated users to upload PHP files to arbitrary locations. Together these vulnerabilities allow an unauthenticated attacker to execute arbitrary PHP code remotely. This Metasploit module was tested against Navigate CMS 2.8.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Zahir Enterprise Plus 6 Stack Buffer Overflow Netis ADSL Router DL4322D RTK 2.1.1 Cross Site Request Forgery »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Navigate CMS Unauthenticated Remote Code Execution

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL