Home

Awesome

CVE-2020-6287-exploit

PoC for CVE-2020-6287

The PoC in python for add user only, no administrator permission set. Inspired by @zeroSteiner from metasploit. Original Metasploit PR module: https://github.com/rapid7/metasploit-framework/pull/13852/commits/d1e2c75b3eafa7f62a6aba9fbe6220c8da97baa8

This PoC only create user with unauthenticated permission and no more administrator permission set.

This project is created only for educational purposes and cannot be used for law violation or personal gain.

The author of this project is not responsible for any possible harm caused by the materials of this project.

Original finding: CVE-2020-6287: Pablo Artuso. CVE-2020-6286: Yvan 'iggy' G.

Usage: python sap-CVE-2020-6287-add-user.py HTTP/S://IP:Port USERNAME_FOR_CREATE PASSWD

Demo

Simple:

<img src="https://pbs.twimg.com/media/EdZA41PUEAAcE8Q?format=png&name=large">

Advanced:

<img src="https://pbs.twimg.com/media/Eda76DnUEAIMJSD?format=png&name=large">