Exploitation

After properly enumerating the website I came across a version of the API running on port 8000.

Saltstack 3000.1 - Remote Code ExecutionExploit Database

GitHub - jasperla/CVE-2020-11651-poc: PoC exploit of CVE-2020-11651 and CVE-2020-11652GitHub