MetInfo 2.0 PHP Code Injection Vulnerability

Exploit for php platform in category web applications ============================================ MetInfo 2.0 PHP Code Injection Vulnerability ============================================ Exploit Title£ºMetInfo 2.0 PHP Code Injection Vulnerability Date:2010-10-31 Author£ºlinux520.com...

MetInfo 2.0 PHP Code Injection

Exploit Title£ºMetInfo 2.0 PHP Code Injection Vulnerability Date:2010-10-31 Author£ºlinux520.com Team£ºhttp://www.linux520.com/ Vendor£ºhttp://www.metinfo.cn/ Dork£º"Powered by MetInfo 2.0 " Google: 90,000 + results Price£º free Language£ºPHP Greetz£ºCCAV +Description£º at 132 line of...

MetInfo 2.0 PHP代码注入漏洞

MetInfo企业网站管理系统是一个功能完善的营销型企业网站管理平台，PHP+MYSQL架构 MetInfo 2.0的/include/common.inc.php文件第132行： evalbase64decode$class2all10; $class2all10变量未初始化，因此我们可以控制其值，进行代码注入的利用。 MetInfo 2.0 SEBUG临时解决方法： 对$class2all10变量进行初始化 厂商补丁： metinfo ----- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.metinfo.cn...

MetInfo 2.0 - PHP Code Injection

MetInfo 2.0 - PHP Code Injection Exploit Title£ºMetInfo 2.0 PHP Code Injection Vulnerability Date:2010-10-31 Author£ºlinux520.com Team£ºhttp://www.linux520.com/ Vendor£ºhttp://www.metinfo.cn/ Dork£º"Powered by MetInfo 2.0 " Google: 90,000 + results Price£º free Language£ºPHP Greetz£ºCCAV...

MetInfo 2.0 - PHP Code Injection

Exploit Title£ºMetInfo 2.0 PHP Code Injection Vulnerability Date:2010-10-31 Author£ºlinux520.com Team£ºhttp://www.linux520.com/ Vendor£ºhttp://www.metinfo.cn/ Dork£º"Powered by MetInfo 2.0 " Google: 90,000 + results Price£º free Language£ºPHP Greetz£ºCCAV +Description£º at 132 line of...