Showing 1 - 9 of 9

Files from Fellipe Oliveira

First Active	2021-04-01
Last Active	2023-08-04

Intelliants Subrion CMS 4.2.1 Remote Code Execution: Posted Aug 4, 2023; Authored by Fellipe Oliveira, Ismail E. Dawoodjee, Hexife | Site metasploit.com; This Metasploit module exploits an authenticated file upload vulnerability in Subrion CMS versions 4.2.1 and lower. The vulnerability is caused by the .htaccess file not preventing the execution of .pht, .phar, and .xhtml files. Files with these extensions are not included in the .htaccess blacklist, hence these files can be uploaded and executed to achieve remote code execution. In this module, a .phar file with a randomized name is uploaded and executed to receive a Meterpreter session on the target, then deletes itself afterwards.; tags | exploit, remote, code execution, file upload; advisories | CVE-2018-19422; SHA-256 | 72859313ffb21cb022d15b4566fe8863b0a0f88f5ef2dff2e8c3eba2e934c2ce; Download | Favorite | View

WordPress wpDiscuz 7.0.4 Remote Code Execution: Posted Jun 8, 2021; Authored by Fellipe Oliveira; WordPress wpDiscuz plugin version 7.0.4 unauthenticated remote code execution exploit.; tags | exploit, remote, code execution; advisories | CVE-2020-24186; SHA-256 | aa63e68f2bfdeedda7921d223b7b89c35603743db979d8834247d72fc6863c1e; Download | Favorite | View

Subrion CMS 4.2.1 Shell Upload: Posted May 17, 2021; Authored by Fellipe Oliveira; Subrion CMS version 4.2.1 file upload bypass exploit that uploads a shell.; tags | exploit, shell, file upload; advisories | CVE-2018-19422; SHA-256 | a8dc69971c84f2d358d2043b54d854b585028b195fc8de3cc1b57d75eb01c988; Download | Favorite | View

ScadaBR 1.0 / 1.1CE Windows Shell Upload: Posted May 13, 2021; Authored by Fellipe Oliveira; ScadaBR versions 1.0 and 1.1CE authenticated shell upload exploit written for Windows targets.; tags | exploit, shell; systems | windows; advisories | CVE-2021-26828; SHA-256 | 9210869fa94e41f6f6ef63aecc9d1ebbba972eb5a529c95dadfb1239861731d7; Download | Favorite | View

ScadaBR 1.0 / 1.1CE Linux Shell Upload: Posted May 13, 2021; Authored by Fellipe Oliveira; ScadaBR versions 1.0 and 1.1CE authenticated shell upload exploit written for Linux targets.; tags | exploit, shell; systems | linux; advisories | CVE-2021-26828; SHA-256 | 2a0345665dc52ccee413e7c98da586cf603e0e659c5a93adc4f3788c3ff1795e; Download | Favorite | View

OpenPLC WebServer 3 Remote Code Execution: Posted May 13, 2021; Authored by Fellipe Oliveira; OpenPLC WebServer version 3 authentication remote code execution exploit.; tags | exploit, remote, code execution; SHA-256 | 682f96df1b4b8a0f370853102a14e7e97bdfde73f5dd8b8422985361a73161e4; Download | Favorite | View

ZeroShell 3.9.0 Remote Command Execution: Posted May 13, 2021; Authored by Fellipe Oliveira; ZeroShell version 3.9.0 remote command execution exploit.; tags | exploit, remote; advisories | CVE-2019-12725; SHA-256 | 96c5da86a5778d99416aad82b1040be38451d87a9ecabe804150409665073dbd; Download | Favorite | View

OpenPLC 3 Remote Code Execution: Posted Apr 26, 2021; Authored by Fellipe Oliveira; OpenPLC version 3 authenticated remote code execution exploit.; tags | exploit, remote, code execution; SHA-256 | 65b0210385b608740a93271d55b93113eacb1472f424450c8a33864212b6c54d; Download | Favorite | View

ScadaBR 1.0 Shell Upload: Posted Apr 1, 2021; Authored by Fellipe Oliveira; ScadaBR version 1.0 suffers from multiple remote shell upload vulnerabilities.; tags | exploit, remote, shell, vulnerability; SHA-256 | 5a92eb4823ed57475fc7effdb2bab98ce6c8f49ffe4b3e5aedd0a9a183c94428; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days