CVE-2020-8163 icon indicating copy to clipboard operation
CVE-2020-8163 copied to clipboard

Published 20 hours ago verified publisher icon lucasallan

Installation process?

Open PunitTailor55 opened this issue 4 years ago • 2 comments

Hi Sir! I would like to try this vulnerability in my local machine. could you possibly provide installation steps or Docker installation? Thank you in advance

PunitTailor55 avatar Jun 22 '20 19:06 PunitTailor55

You can check my pull request -> https://github.com/sh286/CVE-2020-8163/pull/2

EmreOvunc avatar Jul 28 '20 15:07 EmreOvunc

I create a docker image to make the vul target easier.

docker pull vultarget/rails_ruby_rce-cve_2020_8163:4.2.11.1 docker run -it -p 3000:3000 -d vultarget/rails_ruby_rce-cve_2020_8163:4.2.11.1

you can the payload

Just run

ruby exploit.rb http://xxx:3000/main/index "touch /tmp/success"

cckuailong avatar Jul 02 '21 02:07 cckuailong