exploit the possibilities

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 1 of 1

OSVDB: OSVDB-76928

Log1 CMS writeInfo() PHP Code Injection: Posted Jun 3, 2012; Authored by EgiX, sinn3r, Adel SBM | Site metasploit.com; This Metasploit module exploits the "Ajax File and Image Manager" component that can be found in log1 CMS. In function.base.php of this component, the 'data' parameter in writeInfo() allows any malicious user to have direct control of writing data to file data.php, which results in arbitrary remote code execution.; tags | exploit, remote, arbitrary, php, code execution; advisories | CVE-2011-4825, OSVDB-76928; SHA-256 | 5f8de96e6ea32234373a0a7a5100ed196a91a7eb2302465bc03aeaa9b7bfff70; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 132 files
Ubuntu 84 files
indoushka 33 files
Debian 26 files
Gentoo 17 files
nu11secur1ty 15 files
Apple 13 files
LiquidWorm 9 files
Google Security Research 7 files
jheysel-r7 4 files

File Tags

File Archives

Systems

AIX (428)
Apple (2,016)
BSD (375)
CentOS (57)
Cisco (1,925)
Debian (6,851)
Fedora (1,692)
FreeBSD (1,246)
Gentoo (4,339)
HPUX (879)
iOS (355)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (46,852)
Mac OS X (687)
Mandriva (3,105)
NetBSD (256)
OpenBSD (485)
RedHat (13,926)
Slackware (941)
Solaris (1,610)
SUSE (1,444)
Ubuntu (8,949)
UNIX (9,319)
UnixWare (186)
Windows (6,590)
Other

packet storm

© 2022 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec