PHP LiveAPI API Privilege Escalation / how to call

TheMrg · Nov 29, 2017

Hi, question about privilege escalation from PHP LiveAPI:

i addes namespace and modul in /usr/local/cpanel/bin/admin/Test (with test and test.conf)
added paper_lantern/test/test.live.php and test.live.pl
with perl i can call

$val = Cpanel::AdminBin::Call::call(
'Test',
'test',
"callfkt",
"argum",
);
succesfully

But how to call it from PHP LiveAPI?

$data=$cpanel->api2('Test', 'test', array('modul'=>'callfkt','args'=>'argum'));
This is or little different isnot working. sure. This means call Test.pm to Cpanel

Is there a api2 or uapi call to the "Cpanel::AdminBin::Call::call" ?
Or other method to call my root / priv. esc. Script?

Explain:
This is because my plugin needs PHP. So paper_lantern/test/test.live.php is needed (no perl).

Thanks.

cPanelMichael · Nov 29, 2017

Hello,

Here's a response from one of our Technical Analyst's answering a similiar question in a support ticket (it was for a different purpose, but appears to apply to your question as well):

After reviewing this and discussing your request with a developer, I am afraid that I don't believe we will be able to provide you specifically what you are looking for. By intentional design our privilege escalation system makes running PHP as root impossible. Rather what is suggested is that you first create a custom UAPI function:

https://confluence0.cpanel.net/display/public/SDK/UAPI+-+Custom+UAPI+Modules

Unfortunately this has to be done in Perl. Your LiveAPI script will call this custom UAPI module. The custom UAPI module will in turn call the custom adminbin located in /usr/local/cpanel/bin/admin/<namespace>/:

Guide to API Privilege Escalation - Software Development Kit - cPanel Documentation

You custom adminbin script would in turn call the Whostmgr::API::1::IPv6::ipv6_enable_account function. The developer I spoke to said this last part does require some documentation, but I am afraid that this would not be able to be written in PHP, so a PHP example would not be forthcoming
Click to expand...

Thank you.

TheMrg · Nov 30, 2017

Thanks, but how can we run a PHP Script as Root with this succestion?

cPanelMichael · Nov 30, 2017

Hello,

My understanding is that using PHP for that purpose isn't supported. Feel free to send an email to integration@cpanel.net if you'd like some additional feedback to this question from one of our Developers.

Thank you.

Forums

The Community Forums

Interact with an entire community of cPanel & WHM users!

PHP LiveAPI API Privilege Escalation / how to call

TheMrg Registered

cPanelMichael Technical Support Community Manager
Staff Member

TheMrg Registered

cPanelMichael Technical Support Community Manager
Staff Member

LiveAPI trick so feature is enabled

Child failed to make LIVEAPI connection to cPanel.

Need help with liveAPI or similar

Transfers function privileges for Reseller?

Reseller Privileges Not Transfered As Expected

Share This Page

Useful Searches

The Community Forums

Interact with an entire community of cPanel & WHM users!

PHP LiveAPI API Privilege Escalation / how to call

TheMrg Registered

cPanelMichael Technical Support Community Manager Staff Member

TheMrg Registered

cPanelMichael Technical Support Community Manager Staff Member

LiveAPI trick so feature is enabled

Child failed to make LIVEAPI connection to cPanel.

Need help with liveAPI or similar

Transfers function privileges for Reseller?

Reseller Privileges Not Transfered As Expected

Share This Page

cPanelMichael Technical Support Community Manager
Staff Member

cPanelMichael Technical Support Community Manager
Staff Member