CVE-2022-24990

This PoC exploits CVE-2022-24990, an information disclosure and RCE vulnerability in TerraMaster TOS. It first leaks sensitive information via an API endpoint and then uses the leaked credentials to execute arbitrary commands, writing a PHP file to the target system.

This is a functional exploit for CVE-2022-24990, targeting TerraMaster TOS unauthenticated RCE via PHP Object Instantiation. It includes both vulnerability detection and webshell upload capabilities.

This repository contains a Go-based exploit for CVE-2022-24990, targeting TerraMaster TOS devices. It includes both a PoC for information leakage and an exploit to upload a webshell via command injection in the 'createRaid' API endpoint.

This repository contains a Go-based scanner for CVE-2022-24990, which checks for the presence of a vulnerability in TOTOLINK routers by sending a specific HTTP request and analyzing the response. It supports both single URL and batch scanning with configurable threads.

This PoC scans for CVE-2022-24990, an unauthenticated information disclosure vulnerability in TerraMaster TOS NAS devices. It checks for the presence of sensitive data (ADDR and PWD) in the API response.

The repository contains a functional exploit for CVE-2022-24990, a command injection vulnerability in TerraMaster TOS. The exploit leverages a crafted HTTP request to execute arbitrary commands via the 'raidtype' parameter in the 'createRaid' API endpoint.

This Metasploit module exploits an unauthenticated RCE in TerraMaster TOS by chaining CVE-2022-24990 (sensitive info leak) and CVE-2022-24989 (authenticated RCE). It leaks admin credentials via `api.php?mobile/webNasIPS` and executes commands via `api.php?mobile/createRaid`.