Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2012-1495 PoC — WebCalendar多个输入验证错误漏洞

Source
https://github.com/axelbankole/CVE-2012-1495-Webcalendar-
Associated Vulnerability
Title:WebCalendar多个输入验证错误漏洞 (CVE-2012-1495)
Description:install/index.php in WebCalendar before 1.2.5 allows remote attackers to execute arbitrary code via the form_single_user_login parameter.
Readme
# CVE-2012-1495-Webcalendar-
Prerequis : MAchine Kali linux ou Parrot Os 
1- Cloner le repository 

2- extraire l'archive "webcalendar"

3- Creer le container docker et le lancer à l'aide des commandes :

docker build -t webcalendar .
docker run -d -p 80:80 webcalendar

4- Sur votre machine kali, lancez metasploit et cherchez l'exploit puis le lancer.(se referer au rapport )
File Snapshot

 [4.0K]  /data/pocs/db75eb6d4db093088eb3c021189c5c7de253a4a0
├── [ 429]  Dockerfile
├── [ 379]  README.md
├── [634K]  WebCalendar_Report.pdf
└── [1.6M]  webcalendar.zip

0 directories, 4 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. Local POC snapshots are reserved for subscribers — if the original source is unavailable, the local mirror is part of the paid plan.
    3. Mirroring, verifying, and maintaining this POC archive takes ongoing effort, so local snapshots are a paid feature. Your subscription keeps the archive online — thank you for the support. View subscription plans →