7 matches found
CVE-2011-4453
The PageListSort function in scripts/pagelist.php in PmWiki 2.x before 2.2.35 allows remote attackers to execute arbitrary code via PHP sequences in a crafted order parameter in a pagelist directive, leading to unintended use of the PHP createfunction function...
CVE-2011-4453
PmWiki 2.x (notably <= 2.2.34) is affected by a Remote PHP Code Injection in scripts/pagelist.php (Pagelist) where a crafted order parameter enables unintended use of PHP create_function, leading to remote code execution. Public references indicate exploits and Metasploit modules exist for PmW...
PmWiki pagelist.php Remote PHP Code Injection Exploit
This module exploits an arbitrary command execution vulnerability in PmWiki from 2.0.0 to 2.2.34. The vulnerable function is inside /scripts/pagelist.php. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
PmWiki <= 2.2.34 (pagelist) Remote PHP Code Injection Vulnerability
------------------------------------------------------------------- PmWiki = 2.2.34 pagelist Remote PHP Code Injection Vulnerability ------------------------------------------------------------------- author...............: Egidio Romano aka EgiX mail.................: n0b0d13satgmaildotcom...
PmWiki 2.2.34 - pagelist Remote PHP Code Injection (1)
PmWiki 2.2.34 - pagelist Remote PHP Code Injection 1 $r 454. if @$PageListSortCmp$o 455. $code .= "$c = $PageListSortCmp$o; "; 456. else 457. $code .= "$c = @strcasecmp$PCache$x'$o',$PCache$y'$o'; "; 458. $code .= "if $c return $r$c;\n"; 459. 460. StopWatch'PageListSort sort'; 461. if $code...
CVE-2011-4453
creationtimestamp| type| source ---|---|--- 2011-11-23 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18149 2011-12-14 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/18243 2018-05-29 15:50:33+00:00| seen|...
PmWiki <= 2.2.34 (pagelist) Remote PHP Code Injection Exploit
Exploit for php platform in category web applications $r 454. if @$PageListSortCmp$o 455. $code .= "$c = $PageListSortCmp$o; "; 456. else 457. $code .= "$c = @strcasecmp$PCache$x'$o',$PCache$y'$o'; "; 458. $code .= "if $c return $r$c;\n"; 459. 460. StopWatch'PageListSort sort'; 461. if...