NOMISEC-imjdl/CVE-2019-16278-PoC

NOMISEC WORKING POC

Exploit for CVE-2019-16278 - Nostromo nhttpd <1.9.6 - RCE

AI Analysis

This repository contains a functional Python-based exploit for CVE-2019-16278, a path traversal vulnerability in Nhttpd that allows remote command execution via crafted HTTP requests. The PoC sends a malformed POST request to execute arbitrary commands on the target system.

Attack Type

RCE

Complexity

trivial

Reliability

reliable

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

Loading exploit code...

Download ZIP Password: eip

Source

Platform Nomisec

Type remote

Files 3

https://github.com/imjdl/CVE-2019-16278-PoC

Stars 9

Forks 1

Last Push Oct 15, 2019

Authors

imjdl Mr.Pi

Vulnerability

CVE-2019-16278

Nostromo nhttpd <1.9.6 - RCE

CRITICAL KEV

CVSS 9.8