Lucene search
K

76 matches found

Kitploit
Kitploit
added 2019/03/20 12:11 p.m.153 views

Remot3d v2.0 - Tool Created For Large Pentesters As Well As Just For The Pleasure Of Defacers To Control Server By Backdoors

Remot3d - A tool made to generate backdoor to control and exploit a server where the server runs the PHP Hypertext Preprocessor program. Equipped with a backdoor that has been Obfuscated which means that 100% FUD FULLY UNDETECTABLE in other words can penetrate the firewall of a server because of...

7.4AI score
Exploits0References8
Wallarm Lab
Wallarm Lab
added 2018/12/06 5:32 p.m.2551 views

RCE in PHP or how to bypass disable_functions in PHP installations

Today we will explore an exciting method to remotely execute code even if an administrator set disablefunctions in the PHP configuration file. It works at most popular UNIX-like systems. CVE-2018–19518 was assigned to the vulnerability was found by a man with the @crlf nickname. Let’s see details...

8.5CVSS8.2AI score0.9523EPSS
Exploits6
0day.today
0day.today
added 2018/11/16 12:0 a.m.287 views

PHP 5.2.3 imap (Debian Based) - imap_open Disable Functions Bypass Vulnerability

Exploit for linux platform in category local exploits PHP 5.2.3 imap Debian Based - imapopen Disable Functions Bypass Vulnerability /tmp/test0001 $server = "x -oProxyCommand=echo\tZWNobyAnMTIzNDU2Nzg5MCc+L3RtcC90ZXN0MDAwMQo=|base64\t-d|sh"; imapopen''.$server.':143/imapINBOX', '', '' or...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2018/11/14 12:0 a.m.48 views

PHP 5.2.3 imap (Debian Based) - imap_open Disable Functions Bypass

PHP 5.2.3 imap Debian Based - imapopen Disable Functions Bypass /tmp/test0001 $server = "x -oProxyCommand=echo\tZWNobyAnMTIzNDU2Nzg5MCc+L3RtcC90ZXN0MDAwMQo=|base64\t-d|sh"; imapopen''.$server.':143/imapINBOX', '', '' or die"\n\nError: ".imaplasterror;...

1.6AI score
Exploits0
Positive Technologies
Positive Technologies
added 2018/04/16 12:0 a.m.1 views

PT-2018-16240 · Nasa · Cfitsio

Name of the Vulnerable Software and Affected Versions: NASA CFITSIO version 3.42 Description: The issue arises from specially crafted images parsed via the library, which can cause a stack-based buffer overflow, overwriting arbitrary data. This can be triggered by delivering an FIT image,...

8.8CVSS8.9AI score0.03074EPSS
Exploits1References16
BDU FSTEC
BDU FSTEC
added 2017/10/05 12:0 a.m.8 views

The vulnerability of the microprogrammed logic controllers from Rockwell Automation, the Micrologix 1100 and Micrologix 1400, is related to deficiencies in access control. This allows a intruder to remove all administrators, thereby disabling additional functions of the device.

The vulnerability of the microprogrammed logic controllers from Rockwell Automation, the Micrologix 1100 and Micrologix 1400, is related to deficiencies in access control. Exploiting this vulnerability could allow a person with administrator privileges to remotely remove all administrators, there...

3.3CVSS5.8AI score0.02426EPSS
Exploits0References5
exploitpack
exploitpack
added 2016/05/04 12:0 a.m.12 views

Imagick 3.3.0 (PHP 5.4) - Disable Functions Bypass

Imagick 3.3.0 PHP 5.4 - Disable Functions Bypass Exploit Title: PHP Imagick disablefunctions Bypass Date: 2016-05-04 Exploit Author: RicterZ [email protected] Vendor Homepage: https://pecl.php.net/package/imagick Version: Imagick = 5.4 Test on: Ubuntu 12.04 Exploit: $ curl...

0.3AI score
Exploits0
0day.today
0day.today
added 2016/05/04 12:0 a.m.23 views

PHP Imagick 3.3.0 - disable_functions Bypass

Exploit for php platform in category web applications Exploit Title: PHP Imagick disablefunctions Bypass Date: 2016-05-04 Exploit Author: RicterZ email protected Vendor Homepage: https://pecl.php.net/package/imagick Version: Imagick = 5.4 Test on: Ubuntu 12.04 Exploit: $ curl...

7.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2015/10/30 9:50 a.m.37 views

CVE-2007-5653

The Component Object Model COM functions in PHP 5.x on Windows do not follow safemode and disablefunctions restrictions, which allows context-dependent attackers to bypass intended limitations, as demonstrated by executing objects with the kill bit set in the corresponding ActiveX control...

9.3CVSS7.3AI score0.0482EPSS
Exploits0References2
exploitpack
exploitpack
added 2015/09/10 12:0 a.m.58 views

PHP 5.5.9 - zend_executor_globals CGIMode FPM WriteProcMemFile Disable Functions Bypass Load Dynamic Library

PHP 5.5.9 - zendexecutorglobals CGIMode FPM WriteProcMemFile Disable Functions Bypass Load Dynamic Library ?php // EDB Note: Paper https://www.exploit-db.com/docs/english/38104-shoot-zendexecutorglobals-to-bypass-php-disablefunctions.pdf errorreporting0x66778899; settimelimit0x41424344;...

0.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2014/11/25 12:0 a.m.5 views

PHP 5.x / Bash Shellshock Proof of Concept

This is a proof of concept that demonstrates how the Bash shellshock vulnerability can be used in PHP to bypass disablefunctions, safemode, etc...

7AI score
Exploits0
exploitpack
exploitpack
added 2014/11/03 12:0 a.m.473 views

PHP 5.6.2 - Shellshock Safe Mode Disable Functions Bypass Command Injection

PHP 5.6.2 - Shellshock Safe Mode Disable Functions Bypass Command Injection Exploit Title: PHP 5.x Shellshock Exploit bypass disablefunctions Google Dork: none Date: 10/31/2014 Exploit Author: Ryan King Starfall Vendor Homepage: http://php.net Software Link:...

10CVSS0.2AI score0.99999EPSS
Exploits132
exploitpack
exploitpack
added 2014/11/03 12:0 a.m.256 views

PHP 5.6.2 - Shellshock Safe Mode disable_functions Bypass Command Injection

PHP 5.6.2 - Shellshock Safe Mode disablefunctions Bypass Command Injection Exploit Title: PHP 5.x Shellshock Exploit bypass disablefunctions Google Dork: none Date: 10/31/2014 Exploit Author: Ryan King Starfall Vendor Homepage: http://php.net Software Link:...

10CVSS0.5AI score0.99999EPSS
Exploits132
Positive Technologies
Positive Technologies
added 2014/02/20 12:0 a.m.4 views

PT-2014-2786 · None +1 · Libtar +1

Name of the Vulnerable Software and Affected Versions: libtar versions 1.2.20 and earlier Description: The issue concerns multiple directory traversal vulnerabilities in the tar extract glob and tar extract all functions. These vulnerabilities allow remote attackers to overwrite arbitrary files b...

9.1CVSS8AI score0.03277EPSS
Exploits0References26
Positive Technologies
Positive Technologies
added 2012/01/14 12:0 a.m.4 views

PT-2012-2039 · Whmcs · Whmcs

Name of the Vulnerable Software and Affected Versions: WHMCS versions 4.0.x through 5.0.x Description: The issue is related to improper handling of characters in the subject field of a crafted ticket, which can trigger arbitrary code execution in the Smarty templating system. This allows remote...

7.5CVSS8.5AI score0.023EPSS
Exploits0References5
exploitpack
exploitpack
added 2010/11/08 12:0 a.m.9 views

Joomla! Component ProDesk 1.5 - Local File Inclusion

Joomla! Component ProDesk 1.5 - Local File Inclusion ------------------------------------------------------------------------------------------------------- Joomla Component ProDesk v 1.5 comprodesk&includefile Local File Inclusion http://joomlashowroom.com Price - $ 49.99...

0.6AI score
Exploits0
0day.today
0day.today
added 2010/09/01 12:0 a.m.17 views

Cpanel PHP Restriction Bypass Vulnerability 0day

Exploit for php platform in category web applications ================================================ Cpanel PHP Restriction Bypass Vulnerability 0day ================================================ 1 Advisory information Title : Cpanel PHP Restriction Bypass Vulnerability Version : = 11.25...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2009/08/10 8:0 p.m.31 views

CVE-2008-6926

Directory traversal vulnerability in autoinstall4imagesgalleryupgrade.php in the Fantastico De Luxe Module for cPanel allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the scriptpathshow parameter in a GoAhead action. NOTE: this issue only...

7.5AI score0.04024EPSS
Exploits1References9
seebug.org
seebug.org
added 2008/11/05 12:0 a.m.9 views

TBmnetCMS 1.0 (index.php content) Local File Inclusion Vulnerability

No description provided by source. ------------------------------------------------------------------------------------------------------------- TBmnetCMS v1.0 index.php?content Local File Inclusion Vulnerability http://www.tbmnet.de...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/11/04 12:0 a.m.18 views

tbmnetcms-lfi.txt

------------------------------------------------------------------------------------------------------------- TBmnetCMS v1.0 index.php?content Local File Inclusion Vulnerability http://www.tbmnet.de...

7.4AI score
Exploits0
Rows per page
Query Builder