CVE-2019-6447

This exploit leverages an arbitrary file read vulnerability in ES File Explorer via an exposed HTTP service on port 59777. It allows listing files, retrieving device info, and downloading arbitrary files without authentication.

This repository contains a functional PoC for CVE-2019-6447, which exploits an open port (59777) in ES File Explorer to execute commands, retrieve files, and gather device information via JSON payloads. The PoC demonstrates various capabilities, including file retrieval, app launching, and device enumeration.

This repository contains a Python-based PoC for CVE-2019-6447, which exploits an unauthenticated HTTP server running on port 59777 in ES File Explorer for Android. The exploit allows remote attackers on the same Wi-Fi network to list files, retrieve device information, and download arbitrary files without authentication.

This PoC exploits CVE-2019-6447, an open port vulnerability in ES File Explorer, allowing unauthorized access to files and device information via HTTP requests. The script interacts with the exposed API to list files, apps, and download arbitrary files without authentication.

This repository contains a functional Python-based PoC for CVE-2019-6447, which exploits an open HTTP server on port 59777 in ES File Explorer. The exploit allows remote command execution to retrieve device information, list files, and launch applications on vulnerable Android devices.

This exploit targets ES File Explorer 4.1.9.7.4 via an open port vulnerability (CVE-2019-6447) to perform arbitrary file reads and device info enumeration. It interacts with the exposed HTTP service on port 59777 to execute commands like file listing and downloading.

This repository contains a README describing research on CVE-2019-6447 in a mobile application, with a link to an external video demonstration. No exploit code or technical details are provided.

The repository contains a README describing a vulnerability in ES File Manager for Android (CVE-2019-6447), which involves an open TCP port allowing backdoor installation and data exfiltration. No actual exploit code is provided, only a reference to download PDFs for further details.

The repository contains only a README.md file with a brief description of CVE-2019-6447, mentioning an investigation into ES File Browser security weaknesses. No exploit code or technical details are provided.

This repository contains only a README file describing CVE-2019-6447, a vulnerability in ES File Explorer for Android. No exploit code or technical details are provided.

This exploit targets CVE-2019-6447, an open port vulnerability in ES File Explorer v4.1.9.7.4. It sends crafted JSON commands to the exposed HTTP server on port 59777 to execute actions like listing files, apps, or downloading files.

This is a bash script PoC for CVE-2019-6447, an arbitrary file read vulnerability in ES File Explorer 4.1.9.7.4. It uses curl to send crafted POST requests to the exposed HTTP server on port 59777, allowing unauthorized access to files and system information.

This Metasploit module exploits an open port vulnerability in ES File Explorer (CVE-2019-6447) to interact with its HTTP server, allowing unauthorized access to device files, apps, and system information. It sends JSON commands to the server and processes responses to enumerate or retrieve data.