Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

CVE-2018-10517 PoC — CMS Made Simple 安全漏洞

Source
https://github.com/0x00-0x00/CVE-2018-10517
Associated Vulnerability
Title:CMS Made Simple 安全漏洞 (CVE-2018-10517)
Description:In CMS Made Simple (CMSMS) through 2.2.7, the "module import" operation in the admin dashboard contains a remote code execution vulnerability, exploitable by an admin user, because an XML Package can contain base64-encoded PHP code in a data element.
Description
CMS Made Simple 2.2.7 RCE exploit
Readme
# CVE-2018-12613
Authenticated remote command execution by uploading a fake module, dropping PHP files on remote web server.

# Software Affected
1. CMS Made Simple 2.2.7;

# How to use
This PowerShell scripts need two parameters to craft a exploit HTTP request:

    1. CMS Made Simple URL endpoint;
    2. Cookies for unauthenticated user;
    2. A command string to be executed in the remote system shell;

# Example

Prepare all the parameters to use the script:

![Screenshot](example.JPG)

Then command is executed.


Code author: @_zc00l
File Snapshot

Log in to view the POC file snapshot cached by Shenlong Bot

Log in to view
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →