LightBlog 8.4.1.1 - Remote Code Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? echo LightBlog 8.4.1.1 Remote Code Execution Exploit by BlackHawk [email protected] http://itablackhawk.altervista.org Thanks to rgod for the php code and Marty for the Love ; if $argc3 echo Usage: php .$argv0. Host Path...

Design/Logic Flaw

cpmemberedit.php in LightBlog 8.4.1.1 does not check for administrative credentials when processing an admin action, which allows remote authenticated users to increase the privileges of any account...

CVE-2007-5374

CVE-2007-5374 affects LightBlog 8.4.1.1. The vulnerability is in cp_memberedit.php, which does not check administrative credentials when processing an admin action, enabling remote authenticated users to increase the privileges of any account. The referenced CVSS v2 metrics show a base score of 6...

lightblog-exec.txt

!/usr/bin/php -q -d shortopentag=on Thanks to rgod for the php code and Marty for the Love "; if $argc 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n";...

LightBlog 8.4.1.1 - Remote Code Execution

LightBlog 8.4.1.1 - Remote Code Execution !/usr/bin/php -q -d shortopentag=on Thanks to rgod for the php code and Marty for the Love "; if $argc 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i;...

LightBlog 8.4.1.1 - Remote Code Execution

!/usr/bin/php -q -d shortopentag=on Thanks to rgod for the php code and Marty for the Love "; if $argc 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++;if $cont==15 $cont=0; $result.="\r\n";...