Skip to content

migueltarga/CVE-2020-9380

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

30 Commits
.github
.github
 
 
patch
patch
 
 
CVE-2020-9083.gif
CVE-2020-9083.gif
 
 
README.md
README.md
 
 
gld.py
gld.py
 
 
screenshot.png
screenshot.png
 
 

Repository files navigation

PoC IPTV Smarters Exploit

Usage

python gld.py -u http://www.pirate-ilegal-tv.com/ -i

Vulnerability

file includes/ajax-control.php:

<?php
/*
 * @ PHP 5.6
 * @ Decoder version : 1.0.0.1
 * @ Release on : 24.03.2018
 * @ Website    : http://EasyToYou.eu
 */

session_start();
if (file_exists("functions.php")) {
    include_once "functions.php";
    if (isset($_FILES["logoImage"])) {
        $target_dir = "../images/";
        $target_file = $target_dir . basename($_FILES["logoImage"]["name"]);
        if (move_uploaded_file($_FILES["logoImage"]["tmp_name"], $target_file)) {
            echo "images/" . $_FILES["logoImage"]["name"];
            exit;
        }
        echo "errorImage";
        exit;
    }

Screenshot

screenshot

Shell Script Interactive in Python.

About

https://medium.com/@anderson_pablo/iptv-smarters-exploit-cve-2020-9380-22d4b21f5da7

Resources

Readme
Activity

Stars

13 stars

Watchers

6 watching

Forks

16 forks
Report repository

Releases

No releases published

Sponsor this project

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages