phpRPC 0.7 - Remote Code Execution

phpRPC 0.7 - Remote Code Execution phpRPC Remote Code Execution Vendor: Robert Hoffman Product: phpRPC Version: = 0.7 Website: http://sourceforge.net/projects/phprpc/ BID: 16833 CVE: CVE-2006-1032 OSVDB: 23514 SECUNIA: 19028 PACKETSTORM: 44267 Description: phpRPC is meant to be an easy to use...

Shopex V4.8.4-4.8.5 svinfo.php 文件信息泄露漏洞

0x01 框架简述 Shopex是国内市场占有率最高的网店软件，基于免费开源但却性能卓越的Lamp（Linux+Apache+Mysql+Php）架构，最大程度降低您的总体拥有成本。 中文名：商派 外文名：Shopex 服务商：上海派浓网络科技有限公司 官方主页：http://www.shopex.cn/ 0x02 漏洞细节 如果install目录没删，下面这个可以看phpinfo http://www.xx.com/install/svinfo.php?phpinfo=true 两个实例： http://www.5fa.cc/install/svinfo.php?phpinfo=tru...

UserCake 1.3 Cross Site Scripting / Information Disclosure

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : http://0day.today 0 1 + Support e-mail :...

vBulletin 5.1.x - Remote Code Execution

vBulletin 5.1.x - Remote Code Execution Exploit Title: Vbulletin 5.1.X unserialize 0day preauth RCE exploit Date: Nov 4th, 2015 Exploit Author: hhjj Vendor Homepage: http://www.vbulletin.com/ Version: 5.1.x Tested on: Debian CVE : I did not discover this exploit, leaked from the IoT. Build the...

LFI with PHPInfo the local test process-bug warning-the black bar safety net

LFI with PHPInfo foreign researchers in 2 0 0 1 published in a local file comprising the use of the method, as a novice in the domestic but can not find complete study materials, after several days of research to learn and put their learning process, summarize, and share. Basics The local file...

QuickTicket 2.5 Build 20101222 Information Disclosure

| Title : QuickTicket v2.5 build:20101222 Mulllti Vulnerability | Author : indoushka | email : [email protected] | Dork : powered by QT-cute | Tested on: Win8.1 fr pro / 18:17 23/05/2015 | Bug : Mulllti | Download : http://www.qt-cute.org/ ======================================= Source Cod...

Mail.ru: https://voip.agent.mail.ru/phpinfo.php

https://voip.agent.mail.ru/phpinfo.php...

ThinkPHP某处设计缺陷可导致getshell

简要描述： ThinkPHP某处设计缺陷可导致getshell 详细说明： thinkphp中有个缓存函数S，在使用文件方式的缓存的时候，程序会有写出文件的操作。由于没做好过滤导致了代码执行。 判断缓存不存在则写出缓存文件。在使用文件缓存的时候，由于未对缓存文件设置访问权限。导致代码执行。 浏览器中访问 http://localhost:8888/thinkphp/Home/Index/index/?w=%0A;phpinfo%28%29;// 缓存写出成功，然后访问应用目录下的runtime/temp目录，文件名为key的32位md5. 成功执行phpinfo 漏洞证明：...

CVE-2015-2184

ZeusCart 4 allows remote attackers to obtain configuration information via a getphpinfo action to admin/, which calls the phpinfo function...

CVE-2015-2184

ZeusCart 4 is affected by an information-disclosure vulnerability: remote attackers can retrieve configuration data by invoking the getphpinfo operation on admin/ which triggers the PHP phpinfo() function. This exposes sensitive configuration details and is documented across multiple sources (NVD...

dedecms v5. 7 files contains lead to arbitrary code execution(tasteless into the background)-bug warning-the black bar safety net

Security box team www.secbox.cn today found the woven dream dedecms a code execution vulnerability, the vulnerability to execute arbitrary code caused getshell, the Affected versions:≤V5. 7SP1 official Edition2014-06-27 Overview: Security box team in the audit of the woven dream dedecms when foun...

WordPress EasyCart Information Disclosure Vulnerability

WordPress EasyCart is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Use the phpinfo information LFI temporary file[POC]-vulnerability warning-the black bar safety net

Remember before foreign cattle raised by LFI contain temporary files? Did feel a little tasteless, because the temporary file path and name is unknown, although the temporary file name can use a similar? Other wildcards let's call it a wildcard match, while the N individual together with requests...

php: type confusion issue in phpinfo() leading to information leak

A type confusion issue was found in PHP's phpinfo function. A malicious script author could possibly use this flaw to disclose certain portions of server memory...

CVE-2014-5094

Status2k allows remote attackers to obtain configuration information via a phpinfo action in a request to status/index.php, which calls the phpinfo function...

Default configuration

Status2k allows remote attackers to obtain configuration information via a phpinfo action in a request to status/index.php, which calls the phpinfo function...

CVE-2014-5094

Status2k allows remote attackers to obtain configuration information via a phpinfo action in a request to status/index.php, which calls the phpinfo function...

CVE-2014-5094

CVE-2014-5094 affects Status2k Server Monitoring Software. The vulnerability stems from a phpinfo call in status/index.php, which is reachable remotely and leads to disclosure of configuration information. Multiple connected sources (NVD/NVD-derived entries, OpenVAS/ExploitDB references, and thir...

PHPCompta/NOALYSS 6.7.1 5638 - Remote Command Execution

Vulnerability title: Remote Command Execution in PHPCompta/NOALYSS CVE: CVE-2014-6389 Vendor: PHPCompta Product: PHPCompta/NOALYSS Affected version: 6.7.1 5638 Fixed version: 6.7.2 Reported by: Jerzy Kramarz Details: PhpCompta 6.7.1-2 does not validate the syntax of the commands when processing...

PHP Secure Configuration Checker - Check current PHP configuration for potential security flaws

Among the most tedious tasks of PHP security testing is the check for insecure PHP configuration. As a successor of our PHP Security Poster, we have created a script to help system administrators as well as security professionals to assess the state of php.ini and related topics as quickly and as...