GuppY CMS v6.00.10 - Remote Code Execution

Exploit Title: GuppY CMS v6.00.10 - Remote Code Execution Date: Sep 30, 2022 Exploit Author: Chokri Hammedi Vendor Homepage: https://www.freeguppy.org/ Software Link: https://www.freeguppy.org/fgy6dn.php?lng=en&pg=279927&tconfig=0z2 Version: 6.00.10 Tested on: Linux !/usr/bin/php ?php $username =...

GuppY CMS 6.00.10 Shell Upload

Exploit Title: GuppY 6.00.10 CMS Remote Code Execution Date: Sep 30, 2022 Exploit Author: Chokri Hammedi Vendor Homepage: https://www.freeguppy.org/ Software Link: https://www.freeguppy.org/fgy6dn.php?lng=en&pg=279927&tconfig=0z2 Version: 6.00.10 Tested on: Linux !/usr/bin/php ?php $username =...

GuppY存在未明安全漏洞

Bugtraq ID: 47863 Guppy一款来自法国的CMS系统。 Guppy存在未明安全漏洞，目前没有详细漏洞细节提供 Guppy GuppY 4.6.3 Guppy GuppY 4.6 Guppy GuppY 4.6.13a 厂商解决方案 GuppY 4.6.14已经修复此漏洞，建议用户下载使用： http://www.freeguppy.org/...

guppy-rfilfi.txt

vuln.: GuppY 4.6.3 includes.inc selskin Remote File Inclusion script info and download: http://www.freeguppy.org/ dork: "Site powered by GuppY" author: irk4zatyahoo.pl greets to: str0ke, rgod, polish under : '-----------------------------------------------------------------------------' code:...

GuppY 4.6.3 - 'index.php?selskin' Remote File Inclusion

vuln.: GuppY 4.6.3 includes.inc selskin Remote File Inclusion script info and download: http://www.freeguppy.org/ dork: "Site powered by GuppY" author: irk4zatyahoo.pl greets to: str0ke, rgod, polish under : '-----------------------------------------------------------------------------' code:...

GuppY 4.6.3 (includes.inc selskin) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ====================================================================== GuppY 4.6.3 includes.inc selskin Remote File Inclusion Vulnerability ====================================================================== vuln.: GuppY 4.6.3...

GuppY 4.6.3 (includes.inc selskin) Remote File Inclusion Vulnerability

No description provided by source. vuln.: GuppY 4.6.3 includes.inc selskin Remote File Inclusion script info and download: http://www.freeguppy.org/ dork: "Site powered by GuppY" author: irk4zatyahoo.pl greets to: str0ke, rgod, polish under :...

Guppy <= 4.5.9 Remote code execution

Guppy = 4.5.9 Remote code execution / various arbitrary inclusion issues software: site: http://www.freeguppy.org/ description: a very popular French PHP CMS that stores data in files i remote code/commands execution tested and working against php 5.0.2 and php 4.3.3 with register globals off and...

guppyTraverse.txt

BID 14752 is not only an XSS vulnerability, the real problem is a directory transversal flaw and affects Guppy versions less than 4.5.6a. PoC works for versions alertXSS" you receive an error that PHP can't include the file and the javascript gets executed. This assumes registerglobals and...