CVE-2019-12169

Related Files

ATutor 2.2.4 Directory Traversal / Remote Code Execution

Posted Jun 30, 2020

Authored by liquidsky, Erik Wynter | Site metasploit.com

This Metasploit module exploits an arbitrary file upload vulnerability together with a directory traversal flaw in ATutor versions 2.2.4, 2.2.2 and 2.2.1 in order to execute arbitrary commands.

tags | exploit, arbitrary, file upload

advisories | CVE-2019-12169

SHA-256 | 344a78946baa67ebb531073dad88904763b7f86e0bf52c4f8197e8fc0c0f179d

Download | Favorite | View

ATutor 2.2.4 Arbitrary File Upload / Command Execution

Posted Aug 5, 2019

Authored by liquidsky

ATutor version 2.2.4 suffers from a language_import arbitrary file upload that allows for command execution.

tags | exploit, arbitrary, file upload

advisories | CVE-2019-12169

SHA-256 | 68b1f5ef4f43ce98748eca51235dfb77dab8a8340683912b52e996264a98eec7

Download | Favorite | View