# Subrion CMS Pentesting

Subrion is a content management system (CMS).

### File Upload to Reverse Shell (Credential Required) <a href="#file-upload-to-reverse-shell-credential-required" id="file-upload-to-reverse-shell-credential-required"></a>

#### 1. Download Reverse Shell Payload <a href="#id-1-download-reverse-shell-payload" id="id-1-download-reverse-shell-payload"></a>

Get the PHP payload from [php-reverse-shell](https://github.com/pentestmonkey/php-reverse-shell). And change the file extension to **'.phar'**.\
Then start a listener.

```
nc -lvnp 4444
```

#### 2. Upload the Payload in Subrion Panel <a href="#id-2-upload-the-payload-in-subrion-panel" id="id-2-upload-the-payload-in-subrion-panel"></a>

1. **Login**
2. **Move to Content -> Uploads in Panel**
3. **Upload reverse-shell.phar**
4. **Access to /subrion/upload/reverse-shell.phar**

Now you may get a shell.