dom. Dic 8th, 2019

KelvinSecurity

KelvinSecurity – News – Cyber Security News – ETHICAL HACKINg – Pentesting – OSINT

0day – Identify vulnerable (RCE) vBulletin 5.0.0 – 5.5.4

1 min read

Gathering Hosts:

This tool simply iterates over hosts on port 443 and 80 and runs a PoC to test if they are vulnerable to RCE. You can use Shodan to gather potential targets:

shodan download vbullet-443 'html:"vbulletin" port:443'
shodan parse vbullet-443.json.gz --fields ip_str > vbullet-443
shodan download vbullet-80 'html:"vbulletin" port:80'
shodan parse vbullet-80.json.gz --fields ip_str > vbullet-80

By default I provide both host files with 1k hosts each for those of you without a Shodan API key! 

https://github.com/Frint0/mass-pwn-vbulletin

Deja un comentario

Tu dirección de correo electrónico no será publicada. Los campos obligatorios están marcados con *

14 + doce =

Copyright © All rights reserved. | Newsphere by AF themes.