CVE-2021-31761

This exploit leverages a CSRF vulnerability in Webmin 1.973 to execute arbitrary commands via the 'run.cgi' endpoint. It generates a malicious HTML page that submits a form to execute a reverse shell payload when visited by an authenticated admin.

This repository contains a functional exploit for CVE-2021-31761, which leverages a reflected XSS vulnerability in Webmin to achieve remote command execution (RCE). The exploit generates a malicious link that, when clicked by an authenticated Webmin admin, executes a reverse shell payload via CSRF.

This repository contains a functional exploit for CVE-2021-31761, which leverages a reflected XSS vulnerability in Webmin to achieve remote command execution (RCE). The exploit generates a malicious link that, when clicked by an authenticated Webmin admin, triggers a reverse shell.