Automate Recon and scanning process with Vidoc. All security teams in one place
By kannthu
The "Maccmsv10 - Backdoor Remote Code Execution" module is designed to detect a backdoor vulnerability in the Maccmsv10 software. Maccmsv10 is a content management system (CMS) that allows users to create and manage websites. This module focuses on identifying a specific vulnerability that can be exploited by remote attackers to execute arbitrary code on the target system.
The severity of this vulnerability is classified as critical, indicating that it poses a significant risk to the security and functionality of the affected system.
This module was authored by princechaddha.
If successfully exploited, the backdoor vulnerability in Maccmsv10 can allow remote attackers to execute arbitrary code on the target system. This can lead to unauthorized access, data breaches, and potential compromise of the entire system. It is crucial to address this vulnerability promptly to prevent any potential security incidents.
The "Maccmsv10 - Backdoor Remote Code Execution" module works by sending a specific HTTP request to the '/index.php/bbs/index/download' endpoint of the target system. The request is sent using the POST method and includes parameters for downloading a file.
The module includes two matching conditions:
By analyzing the response body and status code, the module determines whether the target system is vulnerable to the Maccmsv10 backdoor remote code execution.
Content-Type: application/x-www-fo...