Unauthenticated rce in sophos User Portal and Webadmin components mass exploitation tool
unauthenticated remote code execution in userportal and webadmin component of sophos firewall
according to shodan there is more than 230k internet exposed of these vulnerable instances.
the script works with list of ips (batch exploiting/mass exploiting) and single target.
- all versions before september 21
- aHR0cHM6Ly9zYXRvc2hpZGlzay5jb20vcGF5L0NHWFRJTA== (decode it using base64)