Home / exploitsPDF  

VMware View Planner 4.6 Remote Code Execution

Posted on 19 March 2021

This Metasploit module exploits an unauthenticated log file upload within the log_upload_wsgi.py file of VMWare View Planner 4.6 prior to 4.6 Security Patch 1. Successful exploitation will result in remote code execution as the apache user inside the appacheServer Docker container.

 

TOP