0ebed6d4c4
5 changes to exploits/shellcodes Epson USB Display 1.6.0.0 - 'EMP_UDSA' Unquote Service Path AnyTXT Searcher 1.2.394 - 'ATService' Unquoted Service Path Online Car Rental System 1.0 - Stored Cross Site Scripting Adobe Connect 10 - Username Disclosure Linux/x64 - execve _cat /etc/shadow_ Shellcode (66 bytes)
18 lines
No EOL
720 B
Text
18 lines
No EOL
720 B
Text
# Title: Adobe Connect 10 - Username Disclosure
|
|
# Author: h4shur
|
|
# date:2021-02-07
|
|
# Vendor Homepage: https://www.adobe.com
|
|
# Software Link: https://www.adobe.com/products/adobeconnect.html
|
|
# Version: 10 and earlier
|
|
# Tested on: Windows 10 & Google Chrome
|
|
# Category : Web Application Bugs
|
|
|
|
### Description :
|
|
|
|
By adding this (/system/help/support) to the end of the desired website address, you can view the username without any filter or obstacle. Sometimes even without a username and password. And by adding (/system/login) to the end of the desired website address, you can access the admin panel without any filters.
|
|
|
|
### POC :
|
|
site.com/system/help/support
|
|
|
|
### Admin Panel :
|
|
site.com/system/login |