CVE-2009-2265

This Metasploit module exploits CVE-2009-2265 in Adobe ColdFusion 8.0.1 by uploading a malicious JSP file via the FCKeditor's file upload functionality, leveraging a directory traversal vulnerability in the 'CurrentFolder' parameter.

This exploit leverages a file upload vulnerability in Adobe ColdFusion 8 to achieve remote command execution by uploading a malicious JSP file. The payload is generated using msfvenom and executed via a reverse shell.

This repository contains a functional Python exploit for CVE-2009-2265, an arbitrary file upload vulnerability in Adobe ColdFusion 8.0.1. The exploit uploads a malicious JSP file to the target server via a vulnerable FCKeditor endpoint, allowing remote code execution.

This repository contains a functional Python script that exploits CVE-2009-2265, an arbitrary file upload vulnerability in ColdFusion 8.0.1. The exploit uploads a malicious JSP file to the target server via a vulnerable FCKeditor endpoint, enabling remote code execution.

This repository contains a functional exploit for CVE-2009-2265, targeting Adobe ColdFusion 8. The exploit generates a JSP payload using msfvenom, uploads it via a multipart POST request, and triggers it to establish a reverse shell.

The repository contains a functional Python3 exploit script for CVE-2009-2265, which targets an LFI vulnerability in Adobe ColdFusion 8.0.1 via FCKeditor < 2.6.4.1. The script allows arbitrary file upload and execution, with features like accessibility options and post-upload request triggering.

This script exploits CVE-2009-2265, an unauthenticated remote code execution vulnerability in Adobe ColdFusion 8. It uploads a malicious JSP file via a directory traversal flaw in the FCKeditor upload component and triggers execution.

This repository contains a functional Rust-based exploit for CVE-2009-2265, targeting Adobe ColdFusion 8's FCKeditor file upload vulnerability via null byte injection to achieve RCE. The PoC generates a JSP reverse shell payload, uploads it using the vulnerability, and triggers execution.

This repository contains a functional Python exploit for CVE-2009-2265, targeting Adobe ColdFusion 8. The exploit leverages a file upload vulnerability to deploy a JSP reverse shell, achieving remote code execution (RCE).

This Metasploit module exploits a file upload vulnerability in Adobe ColdFusion 8.0.1 via FCKeditor's 'CurrentFolder' parameter, allowing arbitrary JSP file upload and execution. It leverages a multipart form data POST request to upload a payload and then triggers it via a GET request.