Sahi pro 7.x/8.x directory traversal Vulnerability / Exploit
/
/
/
Exploits / Vulnerability Discovered : 2019-06-18 |
Type : webapps |
Platform : multiple
This exploit / vulnerability Sahi pro 7.x/8.x directory traversal is for educational purposes only and if it is used you will do on your own risk!
An issue was discovered in Tyto Sahi Pro through 7.x.x and 8.0.0. A directory traversal (arbitrary file access) vulnerability exists in the web reports module. This allows an outside attacker to view contents of sensitive files.
POC :
vulnerable URL :
''' replace the ip and port of the remote sahi pro server machine '''