JK1986

## cve7290.py
#!/usr/bin/env python
#-*- coding:utf8 -*-
# Python script runtime environment : 3.6
# Powered by Tiger Lee of cnzxsoft.com Security Platform Department

'''
    CVE-2017-7290 POC
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7290
    In the default installation configuration, you need administrator privileges can be implemented into the attack, when the database access permissions for root, you can use this vulnerability to write to the server backdoor file.
    Source: findusers.php:466   Read $_POST['url']
	#!/usr/bin/env python
	#-- coding:utf8 --
	# Python script runtime environment : 3.6
	# Powered by Tiger Lee of cnzxsoft.com Security Platform Department

	'''
	CVE-2017-7290 POC
	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7290
	In the default installation configuration, you need administrator privileges can be implemented into the attack, when the database access permissions for root, you can use this vulnerability to write to the server backdoor file.
	Source: findusers.php:466 Read $_POST['url']