.. / CVE-2020-10220

Exploit for rConfig 3.9 - SQL Injection (CVE-2020-10220)

Description:

An issue was discovered in rConfig through 3.9.4. The web interface is prone to a SQL injection via the commands.inc.php searchColumn parameter.

Nuclei Template

View the template here CVE-2020-10220.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2020/CVE-2020-10220.yaml
Copy

References:

https://github.com/v1k1ngfr/exploits-rconfig/blob/master/rconfig_CVE-2020-10220.py
http://packetstormsecurity.com/files/156766/Rconfig-3.x-Chained-Remote-Code-Execution.html
http://packetstormsecurity.com/files/156950/rConfig-3.9.4-searchField-Remote-Code-Execution.html
http://packetstormsecurity.com/files/156688/rConfig-3.9-SQL-Injection.html
https://nvd.nist.gov/vuln/detail/CVE-2020-10220