Xplico Remote Code Execution

Posted on 04 January 2018

This Metasploit module exploits a command injection vulnerability in Xplico. Unauthenticated users can register a new account and then execute a terminal command under the context of the root user.