Sawa ya tuzo ya mdudu: jiandikishe kwa Intigriti, jukwaa la tuzo la mdudu la malipo lililoundwa na wadukuzi, kwa wadukuzi! Jiunge nasi kwenye https://go.intigriti.com/hacktricks leo, na anza kupata tuzo hadi $100,000!
Uchunguzi wa Kiotomatiki
droopescan
pip3installdroopescandroopescanscanmoodle-uhttp://moodle.example.com/<moodle_path>/[+] Plugins found:forumhttp://moodle.schooled.htb/moodle/mod/forum/http://moodle.schooled.htb/moodle/mod/forum/upgrade.txthttp://moodle.schooled.htb/moodle/mod/forum/version.php[+] No themes found.[+] Possible version(s):3.10.0-beta[+] Possible interesting urls found:Staticreadmefile.-http://moodle.schooled.htb/moodle/README.txtAdminpanel-http://moodle.schooled.htb/moodle/login/[+] Scan finished (0:00:05.643539elapsed)
moodlescan
moodlescan
#Install from https://github.com/inc0d3/moodlescanpython3moodlescan.py-k-uhttp://moodle.example.com/<moodle_path>/Version0.7-Dic/2020.............................................................................................................ByVictorHerrera-supportedbywww.incode.cl.............................................................................................................Gettingserverinformationhttp://moodle.schooled.htb/moodle/...server:Apache/2.4.46 (FreeBSD) PHP/7.4.15x-powered-by:PHP/7.4.15x-frame-options:sameoriginlast-modified:Wed,07Apr202121:33:41GMTGettingmoodleversion...Versionfoundvia/admin/tool/lp/tests/behat/course_competencies.feature:Moodlev3.9.0-betaSearchingvulnerabilities...Vulnerabilitiesfound:0Scancompleted.
Nimegundua kwamba zana za kiotomatiki ni za kufeli katika kutambua kasoro zinazoathiri toleo la moodle. Unaweza kuangalia kwa ajili yao katika https://snyk.io/vuln/composer:moodle%2Fmoodle
RCE
Unahitaji kuwa na jukumu la meneja na unaweza kusanikisha programu-jalizi ndani ya kichupo cha "Usimamizi wa Tovuti"**:**
Ikiwa wewe ni meneja, bado unaweza kuwa unahitaji kuamsha chaguo hili. Unaweza kuona jinsi ya kufanya hivyo katika uthibitisho wa mamlaka ya moodle PoC: https://github.com/HoangKien1020/CVE-2020-14321.
Kisha, unaweza kusanikisha programu-jalizi ifuatayo ambayo inaingiza php rev shell ya pentest-monkey ya kawaida (kabla ya kuipakia unahitaji kuibatilisha, kubadilisha anwani ya IP na bandari ya revshell na kuibatilisha tena)
Mwongozo wa tuzo ya mdudu: Jisajili kwa Intigriti, jukwaa la tuzo la mdudu la malipo lililoanzishwa na wadukuzi, kwa wadukuzi! Jiunge nasi kwenye https://go.intigriti.com/hacktricks leo, na anza kupata tuzo hadi $100,000!
