manage engine applications manager

Default Creds

admin:admin

Authenticated RCE

Applications Manager (Build No:14700)

# use port 443
https://www.exploit-db.mkcom/exploits/48793

# manual
Login > Admin > Upload Files / Binaries 
jar based reverse shell / jsp
Select Upload Script to <Product_Home>/working/
Use Execute Program to run it.
# execute program can be used to do other stuff
PreviousmagentoNextmanage engine service desk plus

Last updated