CVE-2015-3306

This exploit leverages the 'mod_copy' module in ProFTPd 1.3.5 to copy files to a web-accessible directory, achieving remote command execution by writing a PHP file. It uses the SITE CPFR and SITE CPT commands to copy '/etc/passwd' and '/proc/self/fd/3' to a PHP file in the web root.

This Metasploit module exploits CVE-2015-3306 in ProFTPD 1.3.5 by leveraging the SITE CPFR/CPTO commands to copy files arbitrarily, ultimately achieving remote code execution via a PHP payload written to the web directory.

This is a writeup describing the exploitation of CVE-2015-3306 in ProFTPD's mod_copy module, where unauthenticated users can abuse SITE CPFR/CPTO commands to copy files, potentially leading to arbitrary file writes or information disclosure.

This exploit leverages the mod_copy module in ProFTPd 1.3.5 to achieve remote command execution by copying a malicious PHP payload to a web-accessible directory and executing it via HTTP request.

This exploit leverages the mod_copy module in ProFTPD 1.3.5 to achieve remote command execution by copying a malicious PHP payload to the web directory via the site cpfr and site cpto commands. The payload is then triggered via HTTP to execute arbitrary commands.

This PoC exploits CVE-2015-3306, an arbitrary file write vulnerability in ProFTPD's mod_copy module, allowing file read, write, and potential remote code execution via a malicious PHP file.

This exploit leverages the ProFTPd mod_copy module vulnerability (CVE-2015-3306) to copy a local file (secret.txt) to a web-accessible directory, enabling remote file disclosure. It uses FTP commands to perform the copy operation and verifies success via HTTP.

This repository provides a functional exploit for CVE-2015-3306, a command injection vulnerability in ProFTPD 1.3.5 via the mod_copy module. The Docker setup deploys a vulnerable ProFTPD instance, and the exploit uses base64-encoded commands to achieve remote code execution (RCE).

This PoC exploits CVE-2015-3306, an authentication bypass in ProFTPD's mod_copy, by chaining SITE CPFR and SITE CPTO commands to copy files either locally or remotely without proper authentication.

This exploit leverages CVE-2015-3306 in ProFTPD 1.3.5 to achieve remote code execution by uploading a PHP backdoor via the 'site cpfr/cpto' commands and executing arbitrary commands through HTTP requests. It supports both direct command execution and reverse shell functionality.

This Python PoC exploits CVE-2015-3306 in ProFTPD by leveraging the mod_copy module to copy a malicious PHP shell to a web-accessible directory, then triggers it via HTTP requests to achieve remote command execution.

This PoC exploits CVE-2015-3306 in ProFTPd 1.3.5 with mod_copy enabled, allowing remote command execution by copying a malicious PHP file to the target web server directory. It uses FTP commands to write a PHP shell and then executes arbitrary commands via HTTP.

This repository contains a functional Python exploit for CVE-2015-3306, a vulnerability in ProFTPD that allows arbitrary file copying via the SITE CPFR/CPTO commands. The PoC demonstrates two methods: copying files to a web-accessible directory and uploading a malicious PHP file for remote command execution.

This PoC exploits CVE-2015-3306 in ProFTPD by leveraging the SITE CPFR/CPTO commands to either copy arbitrary files or upload a malicious PHP shell. It demonstrates both file read and remote code execution via FTP command injection.

This is a detailed technical walkthrough of CVE-2015-3306, covering the exploitation of ProFTPD's mod_copy module for unauthenticated file copying and subsequent privilege escalation via SUID binary PATH manipulation. It includes step-by-step enumeration, exploitation, and post-exploitation techniques.

This repository contains a lab report detailing the exploitation of CVE-2015-3306, a vulnerability in ProFTPD 1.3.5's mod_copy module, which allows unauthorized file access. The report includes steps to exploit the vulnerability and mitigation recommendations.

This repository provides a Docker-based lab environment to simulate CVE-2015-3306, a ProFTPD mod_copy RCE vulnerability. It includes a vulnerable ProFTPD 1.3.5 setup with mod_copy enabled, allowing attackers to copy files to a web directory and achieve remote code execution via a web shell.

This is a functional Python PoC exploit for CVE-2015-3306, a directory traversal vulnerability in ProFTPD. It leverages the SITE CPFR/CPTO commands to drop a PHP backdoor into the webroot, enabling remote command execution.

This repository contains a functional Python exploit for CVE-2015-3306, targeting ProFTPd 1.3.5's mod_copy module. The exploit copies an SSH private key to a remote location and mounts it locally, enabling unauthorized SSH access.

This exploit leverages the ProFTPd 1.3.5 mod_copy vulnerability (CVE-2015-3306) to copy an SSH private key to a remote directory via the SITE CPFR and SITE CPT commands, then mounts the remote directory locally for access.

This Python script exploits CVE-2015-3306 in ProFTPD 1.3.5 by leveraging the 'mod_copy' module to achieve remote command execution via crafted SITE CPFR/CPTO commands. It writes a PHP payload to a target directory and triggers execution via HTTP request.

This repository provides a Docker image for CVE-2015-3306 but lacks actual exploit code. The main.sh script only starts Apache, and the README provides basic Docker commands without technical details on exploitation.

This repository contains a Docker-based PoC for CVE-2015-3306, a vulnerability in ProFTPD mod_copy. The main.sh script starts Apache and ProFTPD in a vulnerable configuration, likely to demonstrate the exploit.

This is a modified exploit for CVE-2015-3306, a ProFTPD command injection vulnerability. It leverages the original exploit to upload a PHP backdoor and then fetches a reverse shell using either wget or curl.

This Metasploit module exploits CVE-2015-3306 in ProFTPD 1.3.5 by leveraging the SITE CPFR/CPTO commands to copy files arbitrarily, ultimately achieving remote code execution via a PHP payload.