22 matches found
CVE-2026-15514
A weakness has been identified in Metasoft 美特软件 MetaCRM up to 6.4.0 Beta06. This vulnerability affects the function RPCService.query of the file /customizemt/xkq/rpc.jsp of the component PHPRPC Remote Call Interface. Executing a manipulation of the argument phprpcargs can lead to sql injection. T...
CVE-2026-15514
Metasoft MetaCRM (up to version 6.4.0 Beta06) contains a SQL injection vulnerability in PHPRPC Remote Call Interface, specifically in RPCService.query within /customizemt/xkq/rpc.jsp. The issue arises from manipulation of the argument phprpc_args, enabling remote exploitation. Public exploit avai...
phpRPC 0.7 - Remote Code Execution
phpRPC 0.7 - Remote Code Execution phpRPC Remote Code Execution Vendor: Robert Hoffman Product: phpRPC Version: = 0.7 Website: http://sourceforge.net/projects/phprpc/ BID: 16833 CVE: CVE-2006-1032 OSVDB: 23514 SECUNIA: 19028 PACKETSTORM: 44267 Description: phpRPC is meant to be an easy to use...
phpRPC < 0.7 - Remote Code Execution
phpRPC Remote Code Execution Vendor: Robert Hoffman Product: phpRPC Version: = 0.7 Website: http://sourceforge.net/projects/phprpc/ BID: 16833 CVE: CVE-2006-1032 OSVDB: 23514 SECUNIA: 19028 PACKETSTORM: 44267 Description: phpRPC is meant to be an easy to use xmlrpc library. phpRPC is greatly...
phpRPC Library <= 0.7 XML Data Decoding Remote Code Execution (2)
No description provided by source. !/usr/bin/perl phpRPC =0.7 Remote Command Execution Exploit based on: http://www.gulftech.org/?node=research&articleid=00105-02262006 Copyright c 2006 cijfer cijfer@netti!fi All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to...
phpRPC Library <= 0.7 XML Data Decoding Remote Code Execution
No description provided by source. !/usr/bin/perl root@host perl rpc.pl phprpc.sourceforge.net /modules/phpRPC/server.php --== IHS IRAN HOMELAND SECURITY ==-- phpRPC = 0.7 commands execute exploit by LorD http://www.ihs.ir IRAN HOMELAND SECURITY$ uname -a;id;pwd Linux sc8-pr-web9.sourceforge.net...
phpRPC decode function command execution
Added: 03/13/2006 CVE: CVE-2006-1032 BID: 16833 OSVDB: 23514 Background phpRPC is an xmlrpc library written in PHP supporting most databases. Problem A vulnerability in the decode function allows a remote attacker to execute arbitrary PHP commands placed inside a tag. Resolution phpRPC is no long...
phpRPC decode function command execution
Added: 03/13/2006 CVE: CVE-2006-1032 BID: 16833 OSVDB: 23514 Background phpRPC is an xmlrpc library written in PHP supporting most databases. Problem A vulnerability in the decode function allows a remote attacker to execute arbitrary PHP commands placed inside a tag. Resolution phpRPC is no long...
phpRPC decode function command execution
Added: 03/13/2006 CVE: CVE-2006-1032 BID: 16833 OSVDB: 23514 Background phpRPC is an xmlrpc library written in PHP supporting most databases. Problem A vulnerability in the decode function allows a remote attacker to execute arbitrary PHP commands placed inside a tag. Resolution phpRPC is no long...
phpRPC decode function command execution
Added: 03/13/2006 CVE: CVE-2006-1032 BID: 16833 OSVDB: 23514 Background phpRPC is an xmlrpc library written in PHP supporting most databases. Problem A vulnerability in the decode function allows a remote attacker to execute arbitrary PHP commands placed inside a tag. Resolution phpRPC is no long...
CVE-2006-1032
Eval injection vulnerability in the decode function in rpcdecoder.php for phpRPC 0.7 and earlier, as used by runcms, exoops, and possibly other programs, allows remote attackers to execute arbitrary PHP code via the base64 tag...
CVE-2006-1032
Eval injection vulnerability in the decode function in rpcdecoder.php for phpRPC 0.7 and earlier, as used by runcms, exoops, and possibly other programs, allows remote attackers to execute arbitrary PHP code via the base64 tag...
CVE-2006-1032
The CVE-2006-1032 vulnerability affects phpRPC
phpRPC Library <= 0.7 XML Data Decoding Remote Code Execution (2)
No description provided by source. !/usr/bin/perl phpRPC =0.7 Remote Command Execution Exploit based on: http://www.gulftech.org/?node=research&articleid=00105-02262006 Copyright c 2006 cijfer cijfer@netti!fi All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to...
phpRPC Library 0.7 - XML Data Decoding Remote Code Execution (2)
phpRPC Library 0.7 - XML Data Decoding Remote Code Execution 2 !/usr/bin/perl phpRPC All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to 'http://target.com/dir' cijfer$ $Id: cijfer-prpcxpl.pl,v 0.1 2006/03/01 05:46:00 cijfer Exp $ use LWP::UserAgent; use...
phpRPC Library <= 0.7 XML Data Decoding Remote Code Execution (2)
Exploit for unknown platform in category web applications ================================================================= phpRPC Library $host, "proxy=s" = $proxy, "verbose+" = $verbose; &usage unless $host; while print color"green", "cijfer$ ", color"reset"; chomp$command = ; exit unless...
phpRPC Library 0.7 - XML Data Decoding Remote Code Execution (2)
!/usr/bin/perl phpRPC All rights reserved. never ctrl+c again. cijfer$ http://target.com/dir host changed to 'http://target.com/dir' cijfer$ $Id: cijfer-prpcxpl.pl,v 0.1 2006/03/01 05:46:00 cijfer Exp $ use LWP::UserAgent; use URI::Escape; use Getopt::Long; use Term::ANSIColor; $res =...
phpRPC Library 0.7 - XML Data Decoding Remote Code Execution (1)
phpRPC Library 0.7 - XML Data Decoding Remote Code Execution 1 !/usr/bin/perl root@host perl rpc.pl phprpc.sourceforge.net /modules/phpRPC/server.php --== IHS IRAN HOMELAND SECURITY ==-- phpRPC new Proto = "tcp", PeerAddr = "$host", PeerPort = "80" || die "connecterror\n"; while 1 print 'IRAN...
phpRPC Library <= 0.7 XML Data Decoding Remote Code Execution
Exploit for unknown platform in category web applications ============================================================= phpRPC Library new Proto = "tcp", PeerAddr = "$host", PeerPort = "80" || die "connecterror\n"; while 1 print 'IRAN HOMELAND SECURITY$ '; $cmd = ; chop$cmd; last if $cmd eq 'exit...
phpRPC Library <= 0.7 XML Data Decoding Remote Code Execution
No description provided by source. !/usr/bin/perl root@host perl rpc.pl phprpc.sourceforge.net /modules/phpRPC/server.php --== IHS IRAN HOMELAND SECURITY ==-- phpRPC = 0.7 commands execute exploit by LorD http://www.ihs.ir IRAN HOMELAND SECURITY$ uname -a;id;pwd Linux sc8-pr-web9.sourceforge.net...