.. / CVE-2021-45968

Exploit for Pascom CPS - Local File Inclusion (CVE-2021-45968)

Description:

Pascom packaged with Cloud Phone System (CPS) versions before 7.20 contain a known local file inclusion vulnerability.

Nuclei Template

View the template here CVE-2021-45968.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2021/CVE-2021-45968.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2021-45968
https://tutorialboy24.blogspot.com/2022/03/the-story-of-3-bugs-that-lead-to.html
https://www.pascom.net/doc/en/release-notes/
https://jivesoftware.com/platform/
https://kerbit.io/research/read/blog/4