Vulnerability & Exploit Database

Back to search

Zpanel Remote Unauthenticated RCE

This module exploits an information disclosure vulnerability in ZPanel. The vulnerability is due to a vulnerable version of pChart used by ZPanel that allows unauthenticated users to read arbitrary files remotely on the file system. This particular module utilizes this vulnerability to identify the username/password combination of the MySQL instance. With the credentials the attackers can login to PHPMyAdmin and execute SQL commands to drop a malicious payload on the filesystem and call it leading to remote code execution.

Free Metasploit Download

Get your copy of the world's leading penetration testing tool

 Download Now

Module Name



  • Balazs Makany
  • Jose Antonio Perez
  • dawn isabel
  • brad wolfe
  • brent morris
  • james fitts



  • Generic (PHP Payload)
  • Linux x86


  • php
  • linux


  • php
  • php
  • x86



Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':

msf > use exploit/multi/http/zpanel_information_disclosure_rce msf exploit(zpanel_information_disclosure_rce) > show targets ...targets... msf exploit(zpanel_information_disclosure_rce) > set TARGET <target-id> msf exploit(zpanel_information_disclosure_rce) > show options and set options... msf exploit(zpanel_information_disclosure_rce) > exploit