PHP-Post <= 1.01 (template) Remote Code Execution Exploit

!/usr/bin/php -q -d shortopentag=on ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...

PHP-Post 1.01 - template Remote Code Execution

PHP-Post 1.01 - template Remote Code Execution !/usr/bin/php -q -d shortopentag=on ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+:...

PHP-Post <= 1.01 (template) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ========================================================= PHP-Post = 1.01 template Remote Code Execution Exploit ========================================================= !/usr/bin/php -q -d shortopentag=on ? print ' ::::::::: :::::::::: :...

PHP-Post 1.01 - &#039;template&#039; Remote Code Execution

!/usr/bin/php -q -d shortopentag=on ? print ' ::::::::: :::::::::: ::: ::: ::::::::::: ::: :+: :+: :+: :+: :+: :+: :+: +:+ +:+ +:+ +:+ +:+ +:+ +:+ ++ +:+ +++:++ ++ +:+ ++ ++ ++ ++ ++ ++ ++ ++ ++ + + + +++ + + ::::::::::: :::::::::: ::: :::: :::: :+: :+: :+: :+: +:+:+: :+:+:+ +:+ +:+ +:+ +:+ +:+...

[SA22014] PHP-Post Multiple Vulnerabilities

TITLE: PHP-Post Multiple Vulnerabilities SECUNIA ADVISORY ID: SA22014 VERIFY ADVISORY: http://secunia.com/advisories/22014/ CRITICAL: Moderately critical IMPACT: Cross Site Scripting, Manipulation of data, Exposure of sensitive information WHERE: From remote SOFTWARE: PHP-Post 1.x...

CVE-2006-4877

Variable overwrite vulnerability in David Bennett PHP-Post PHPp 1.0 and earlier allows remote attackers to overwrite arbitrary program variables via multiple vectors that use the extract function, as demonstrated by the tableprefix parameter in 1 index.php, 2 profile.php, and 3 header.php...

CVE-2006-4879

SQL injection vulnerability in profile.php in David Bennett PHP-Post PHPp 1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter...

CVE-2006-4878

Directory traversal vulnerability in footer.php in David Bennett PHP-Post PHPp 1.0 and earlier allows remote attackers to read and include arbitrary local files via a .. dot dot sequence in the template parameter. NOTE: this was later reported to affect 1.0.1, and demonstrated for code execution ...

CVE-2006-4880

David Bennett PHP-Post PHPp 1.0 and earlier allows remote attackers to obtain sensitive information via a direct request for 1 footer.php, 2 template.php, or 3 lastvisit.php, which reveals the installation path in various error messages...

CVE-2006-4881

Multiple cross-site scripting XSS vulnerabilities in David Bennett PHP-Post PHPp 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the replyuser parameter in a pm.php; 2 the txtjumpto parameter in b dropdown.php; the 3 txterror and 4 txttemplatenotexist parameter...

CVE-2006-4879

The CVE-2006-4879 entry documents a SQL injection vulnerability in the PHPp 1.0 (David Bennett PHP-Post) profile.php where the user parameter allows remote arbitrary SQL execution. Affected component: profile.php in PHP-Post (PHPp) 1.0 and earlier. Root cause: unsafely interpolated user input in ...

CVE-2006-4880

CVE-2006-4880 affects PHP-Post (PHPp) 1.0 and earlier. Affected components (footer.php, template.php, lastvisit.php) can disclose installation path via direct requests, through error messages generated by these scripts. Root cause is information disclosure in error handling/response content. Repo...

CVE-2006-4878

The CVE-2006-4878 issue affects PHPp (David Bennett PHP-Post) 1.0 and earlier, with a directory traversal vulnerability in footer.php. A remote attacker can read arbitrary local files by manipulating the template parameter to include a .. sequence. The note indicates exposure was later reported t...

CVE-2006-4877

The CVE-2006-4877 entry concerns David Bennett PHP-Post (PHPp) 1.0 and earlier, where a variable overwrite vulnerability exists due to the use of PHP extract in multiple vectors. The affected components are the PHPp pages index.php, profile.php, and header.php, with the demonstrated vector involv...

CVE-2006-4877

Variable overwrite vulnerability in David Bennett PHP-Post PHPp 1.0 and earlier allows remote attackers to overwrite arbitrary program variables via multiple vectors that use the extract function, as demonstrated by the tableprefix parameter in 1 index.php, 2 profile.php, and 3 header.php...

CVE-2006-4881

Multiple cross-site scripting XSS vulnerabilities in David Bennett PHP-Post PHPp 1.0 and earlier allow remote attackers to inject arbitrary web script or HTML via 1 the replyuser parameter in a pm.php; 2 the txtjumpto parameter in b dropdown.php; the 3 txterror and 4 txttemplatenotexist parameter...

CVE-2006-4880

David Bennett PHP-Post PHPp 1.0 and earlier allows remote attackers to obtain sensitive information via a direct request for 1 footer.php, 2 template.php, or 3 lastvisit.php, which reveals the installation path in various error messages...

PHP-post Web Forum 0.x.1.0 - pm.php?replyuser Cross-Site Scripting

PHP-post Web Forum 0.x.1.0 - pm.php?replyuser Cross-Site Scripting source: https://www.securityfocus.com/bid/20061/info PHP-Post is prone to multiple input-validation vulnerabilities, including multiple cross-site scripting, SQL-injection, and remote file-include issues, because the application...

PHP-post Web Forum 0.x.1.0 - profile.php Multiple SQL Injections

PHP-post Web Forum 0.x.1.0 - profile.php Multiple SQL Injections source: https://www.securityfocus.com/bid/20061/info PHP-Post is prone to multiple input-validation vulnerabilities, including multiple cross-site scripting, SQL-injection, and remote file-include issues, because the application fai...

PHP-post Web Forum 0.x.1.0 - &#039;profile.php&#039; Multiple SQL Injections

source: https://www.securityfocus.com/bid/20061/info PHP-Post is prone to multiple input-validation vulnerabilities, including multiple cross-site scripting, SQL-injection, and remote file-include issues, because the application fails to sanitize user-supplied input. A successful exploit of these...