Skip to content

Instantly share code, notes, and snippets.


sinfulz sinfulz

View GitHub Profile
View .tmux.conf
# Remap prefix to screens
set -g prefix C-a
bind C-a send-prefix
unbind C-b
# Quality of line stuff
set -g history-limit 10000
set -g allow-rename off
sinfulz / CVE-2019-17501.txt
Last active Sep 13, 2020
CVE-2019-17501 - Centreon 19.04 Authenticated RCE
View CVE-2019-17501.txt
Centreon 19.04 allows attackers to execute arbitrary OS commands via the Command Line field
of main.php?p=60807&type=4 (aka the Configuration > Commands > Discovery screen).
[Additional Information]
Once one has logged into Centreon:
1. navigate to: Configuration > Commands > Discovery OR http://ip-address/centreon/main.php?p=60807&type=4
2. in the "Command Line" section put a command: e.g. "cat /etc/passwd" without quotes.
View proof
### Keybase proof
I hereby claim:
* I am sinfulz on github.
* I am sinfulz ( on keybase.
* I have a public key ASAIN_yZRtaA0eeOArIx_slbk4JImcaiwNl9UZui94676Ao
To claim this, I am signing this object: