Lucene search
K

7 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.284 views

TikiWiki <= 1.9 Sirius (jhot.php) Remote Command Execution Exploit

No description provided by source. !/usr/bin/php -q -d shortopentag=on ? printr' -------------------------------------------------------------------------------- TikiWiki = 1.9 Sirius jhot.php remote commands execution exploit by rgod [email protected] site: http://retrogod.altervista.org dork:...

7.1AI score
Exploits0
Saint
Saint
added 2006/09/08 12:0 a.m.227 views

TikiWiki file upload vulnerability (jhot.php)

Added: 09/08/2006 CVE: CVE-2006-4602 BID: 19819 OSVDB: 28456 Background TikiWiki is a multi-purpose web content management system written in PHP. Problem The jhot.php script allows remote attackers to upload arbitrary PHP commands into the img/wiki directory. The commands can then be executed by...

7.5CVSS6.9AI score0.42596EPSS
Exploits8
Saint
Saint
added 2006/09/08 12:0 a.m.23 views

TikiWiki file upload vulnerability (jhot.php)

Added: 09/08/2006 CVE: CVE-2006-4602 BID: 19819 OSVDB: 28456 Background TikiWiki is a multi-purpose web content management system written in PHP. Problem The jhot.php script allows remote attackers to upload arbitrary PHP commands into the img/wiki directory. The commands can then be executed by...

7.5CVSS6.8AI score0.42596EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2006/09/04 12:0 a.m.39 views

TikiWiki jhot.php Arbitrary File Upload

The 'jhot.php' script included with the version of TikiWiki installed on the remote host allows an unauthenticated attacker to upload arbitrary files to a known directory within the web server's document root. Provided PHP's 'fileuploads' setting is enabled, which is true by default, this flaw ca...

7.5CVSS6AI score0.42596EPSS
Exploits8References2
exploitpack
exploitpack
added 2006/09/02 12:0 a.m.52 views

TikiWiki 1.9 Sirius - jhot.php Remote Command Execution

TikiWiki 1.9 Sirius - jhot.php Remote Command Execution !/usr/bin/php -q -d shortopentag=on 126 $result.=" ."; else $result.=" ".$string$i; if strlendechexord$string$i==2 $exa.=" ".dechexord$string$i; else $exa.=" 0".dechexord$string$i; $cont++...

Exploits0
0day.today
0day.today
added 2006/09/02 12:0 a.m.436 views

TikiWiki <= 1.9 Sirius (jhot.php) Remote Command Execution Exploit

Exploit for unknown platform in category web applications ================================================================== TikiWiki 126 $result.=" .";...

7.1AI score
Exploits0
FreeBSD
FreeBSD
added 2006/08/21 12:0 a.m.48 views

tikiwiki -- multiple vulnerabilities

Secunia reports: Thomas Pollet has discovered a vulnerability in TikiWiki, which can be exploited by malicious people to conduct cross-site scripting attacks. Input passed to the "highlight" parameter in tiki-searchindex.php is not properly sanitised before being returned to the user. This can be...

6.4AI score
Exploits0References2
Rows per page
Query Builder