CVE-2024-7954 PoC — SPIP porte_plume Plugin Arbitrary PHP Execution

Source

Associated Vulnerability

Description

This exploit will attempt to execute system commands on SPIP targets.

Readme

# CVE-2024-7954
This exploit will attempt to execute system commands on SPIP targets (CVE-2024-7954).
![Banner](screens/screen.jpg)

## Overview

This is a bulk scanning and exploitation tool for CVE-2024-7954: SPIP 4.2.8 allows unauthenticated attackers to launch RCE on SPIP targets. This tool is based on this [Security Research](https://thinkloveshare.com/hacking/spip_preauth_rce_2024_part_1_the_feather/).

## How to Use

### Install the script requirements:
```sh
pip install -r requirements.txt
```

### Options:
```sh
POC for SPIP 4.2.8 vulnerability

options:
  -h, --help  show this help message and exit
  -u U        Target URL, example http://target:9090
  -f F        File containing list of URLs (one per line)
  -c C        Command to execute on the target, default is id
```

## Contact

For any suggestions or thoughts, please get in touch with [me](https://x.com/MohamedNab1l).


## Disclaimer

I like to create my own tools for fun, work and educational purposes only. I do not support or encourage hacking or unauthorized access to any system or network. Please use my tools responsibly and only on systems where you have clear permission to test.

## References

- https://nvd.nist.gov/vuln/detail/CVE-2024-7954
- https://thinkloveshare.com/hacking/spip_preauth_rce_2024_part_1_the_feather/

File Snapshot

 [4.0K]  /data/pocs/8b423035548cceed907e46187a947a1671edf60c
├── [6.3K]  CVE-2024-7954.py
├── [1.3K]  README.md
├── [  18]  requirements.txt
└── [4.0K]  screens
    └── [ 60K]  screen.jpg

1 directory, 4 files

Remarks