: $year = date("Y"); $month = date("F"); $weekNum = date("W") - date("W",strtotime(date("Y-m-01"))) + 1; $path = "/storage/$year/$month/week$weekNum/" ?>
Vtiger CRM Upload Exploit
This module demonstrates chained exploitation. It will upload and execute a reverse bindshell. The vulnerability which is exploited is the in the CRM vtiger 5.0.4.

Start the listener on the host: 
    nc -nvlp 8888
Target Web Server Target Directory Reverse Bindshell Host Reverse Bindshell Port