Exploit CVE-2020-6079 – Blind Command Injection In Edgewater Edgemarc Devices

This exploit was developed based on the technical description by depthsecurity https://depthsecurity.com/blog/cve-2020-6079-blind-command-injection-in-edgewater-edgemarc-deviceshidden page that allows for user-defined commands such as specific iptables routes, etc., to be set. You can use this page as a web shell essentially to execute commands, though you get no feedback client-side from the web application: if the command is valid, it […]