CVE-2021-44529

This exploit leverages a remote code execution vulnerability in Ivanti Endpoint Manager 4.6 by injecting a base64-encoded command into a cookie parameter. The payload is executed server-side, and the output is retrieved via a specific HTML tag in the response.

This exploit leverages a command injection vulnerability in Ivanti Cloud Service Appliance (CSA) by encoding a malicious command in a base64 cookie, which is then executed on the target server. The response is parsed to extract the command output.

This PoC exploits a code injection vulnerability in Ivanti EPM Cloud Services Appliance (CSA) by encoding a system command in base64 and passing it via a cookie, allowing unauthenticated arbitrary code execution with limited privileges (nobody). The script sends a crafted request and extracts the command output from the response.

This Metasploit module exploits a command injection vulnerability in Ivanti Cloud Services Appliance (CSA) before version 4.6.0-512. It leverages a cookie-based code injection to execute arbitrary commands as the 'nobody' user.