module

Unauthenticated remote code execution in Ignition

Try Surface Command
Back to search
Disclosed
2021-01-13
Created
2022-02-17

Description

Ignition before 2.5.2, as used in Laravel and other products,
allows unauthenticated remote attackers to execute arbitrary code
because of insecure usage of file_get_contents() and file_put_contents().
This is exploitable on sites using debug mode with Laravel before 8.4.2.

Authors

Heyder Andrade eu@heyderandrade.org
ambionics

Platform

Linux,OSX,Unix,Windows

References

Module Options

To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:


    msf > use exploit/multi/php/ignition_laravel_debug_rce
    msf exploit(ignition_laravel_debug_rce) > show targets
        ...targets...
    msf exploit(ignition_laravel_debug_rce) > set TARGET < target-id >
    msf exploit(ignition_laravel_debug_rce) > show options
        ...show and set options...
    msf exploit(ignition_laravel_debug_rce) > exploit
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today