CVE-2022-28368

This exploit leverages CVE-2022-28368 in Dompdf <1.2.1 to achieve remote code execution by injecting a malicious font file via CSS. It sets up a local HTTP server to serve the payload and triggers a reverse shell.

This is a functional PoC exploit for CVE-2022-28368, targeting Dompdf versions <1.2.1. It achieves RCE by injecting malicious CSS to store a PHP shell in the font cache, which is then executed via a reverse shell payload.

This repository contains a functional Python exploit for CVE-2022-28368, which achieves RCE in Dompdf 1.2.1 by leveraging a malicious @font-face CSS rule to fetch and execute a PHP payload disguised as a TTF font file. The exploit automates the process by spinning up a local web server to host the malicious files and triggering the vulnerability via HTTP requests.

This exploit leverages CVE-2022-28368 in Dompdf to achieve remote code execution by injecting a malicious CSS file that triggers a request to a PHP payload, which is then executed on the target server.

This Python script exploits CVE-2022-28368, a remote code execution vulnerability in dompdf's cached font handling. It sets up a pseudo-HTTP server to deliver a malicious font file and triggers payload execution via a crafted URL.