Share
## https://sploitus.com/exploit?id=70A262CE-4967-5480-9A9B-FA07CF9A9EA0
# CVE-2023-20198-RCE
CVE-2023-20198-RCE, support adding/deleting users and executing cli commands/system commands.
# Usage
CVE-2023-20198-RCE.py [-h] -u URL [-p PROXY] [-au ADD_USER] [-ap ADD_PASS] [-du DEL_USER] [-pm PRIVILEGE_MODE]
[-em EXPLOIT_MODE] [-oc OS_CMD] [-cc CLI_CMD]
CVE-2023-20198-RCE
options:
-h, --help show this help message and exit
-u URL, --url URL target url to check, eg: http://example.com
-p PROXY, --proxy PROXY
proxy url, eg: http://127.0.0.1:8083
-au ADD_USER, --add-user ADD_USER
username to add.If left blank, an 8-digit mixed case English string will be randomly
generated.
-ap ADD_PASS, --add-pass ADD_PASS
password to add.If left blank, an 8-digit mixed case English string will be randomly
generated.
-du DEL_USER, --del-user DEL_USER
username to delete
-pm PRIVILEGE_MODE, --privilege-mode PRIVILEGE_MODE
user/privileged
-em EXPLOIT_MODE, --exploit-mode EXPLOIT_MODE
user/cmd
-oc OS_CMD, --os-cmd OS_CMD
exec os command
-cc CLI_CMD, --cli-cmd CLI_CMD
exec cli command