exploit the possibilities
Showing 1 - 1 of 1 RSS Feed

Files

OpenX banner-edit.php File Upload PHP Code Execution
Posted May 8, 2010
Authored by jduck | Site metasploit.com

This Metasploit module exploits a vulnerability in the OpenX advertising software. In versions prior to version 2.8.2, authenticated users can upload files with arbitrary extensions to be used as banner creative content. By uploading a file with a PHP extension, an attacker can execute arbitrary PHP code. NOTE: The file must also return either "png", "gif", or "jpeg" as its image type as returned from the PHP getimagesize() function.

tags | exploit, arbitrary, php
advisories | CVE-2009-4098
MD5 | e42c76a052945a31434e621876ad7db4
Page 1 of 1
Back1Next

Top Authors In Last 30 Days

Recent News

News RSS Feed
Advanced Hackers Are Infecting IT Providers To Get At Customers
Posted Sep 19, 2019

tags | headline, hacker, malware, backdoor
Iowa Officials Claim Confusion Over Scope In Pen-Test Arrest
Posted Sep 19, 2019

tags | headline, hacker, government
Smart TVs, Subscription Services Leak Data To Facebook, Google
Posted Sep 19, 2019

tags | headline, privacy, google, spyware, facebook
Hotel Websites Infected With Skimmer Via Supply Chain Attack
Posted Sep 19, 2019

tags | headline, bank, cybercrime, fraud
Medical Records For 24.3 Million Left Exposed
Posted Sep 18, 2019

tags | headline, privacy, usa, data loss, fraud
New Algorithms Aim To Stamp Out Abuse On Twitter
Posted Sep 18, 2019

tags | headline, fraud, twitter
Poor Protocol Design For IoT Devices Fueling DDoS
Posted Sep 18, 2019

tags | headline, denial of service, flaw
Novaestrat Exec Arrested After Ecuadorian Data Leak
Posted Sep 18, 2019

tags | headline, government, privacy, data loss
Alleged JPMorgan Hacker Set To Plead Guilty
Posted Sep 17, 2019

tags | headline, hacker, bank
The Air Force Will Let Hackers Try To Hijack An Orbiting Satellite
Posted Sep 17, 2019

tags | headline, hacker, usa, conference, military
View More News →
packet storm

© 2019 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close