OpenSIS 'modname' - PHP Code Execution

No description provided by source. This module requires Metasploit: http//metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'msf/core' class Metasploit3 Msf::Exploit::Remote Rank = ExcellentRanking include Msf::Exploit::Remote::HttpClient def...

openSIS "modname" PHP代码注入漏洞

CVECAN ID: CVE-2013-1349 openSIS是开源学生信息系统。 openSIS 5.2版本没有正确过滤ajax.php内的"modname"参数值，可导致注入和执行任意PHP代码。 0 opensis opensis 5.2 厂商补丁： opensis ------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.opensis.com/ openSIS: http://sourceforge.net/p/opensis-ce/bugs/59/ Egidio Romano:...

OpenSIS 'modname' PHP Code Execution Vulnerability

This Metasploit module exploits a PHP code execution vulnerability in OpenSIS versions 4.5 to 5.2 which allows any authenticated user to execute arbitrary PHP code under the context of the web-server user. The 'ajax.php' file calls 'eval' with user controlled data from the 'modname' parameter. Th...

OpenSIS 'modname' PHP Code Execution

This module exploits a PHP code execution vulnerability in OpenSIS versions 4.5 to 5.2 which allows any authenticated user to execute arbitrary PHP code under the context of the web-server user. The 'ajax.php' file calls 'eval' with user controlled data from the 'modname' parameter. This module...