Cayin CMS NTP Server 11.0 Remote Code Execution

Posted by deepcore on June 19, 2020 – 7:43 pm

This Metasploit module exploits an authenticated remote code execution vulnerability in Cayin CMS versions 11.0 and below. The code execution is executed in the system_service.cgi file’s ntpIp Parameter. The field is limited in size, so repeated requests are made to achieve a larger payload. Cayin CMS-SE is built for Ubuntu 16.04 (20.04 failed to install correctly), so the environment should be pretty set and not dynamic between targets. Results in root level access.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Gila CMS 1.1.18.1 SQL Injection / Shell Upload OpenCTI 3.3.1 Cross Site Scripting / Directory Traversal »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Cayin CMS NTP Server 11.0 Remote Code Execution

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL