exploit the possibilities

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 1 of 1

OSVDB: OSVDB-76928

Log1 CMS writeInfo() PHP Code Injection: Posted Jun 3, 2012; Authored by EgiX, sinn3r, Adel SBM | Site metasploit.com; This Metasploit module exploits the "Ajax File and Image Manager" component that can be found in log1 CMS. In function.base.php of this component, the 'data' parameter in writeInfo() allows any malicious user to have direct control of writing data to file data.php, which results in arbitrary remote code execution.; tags | exploit, remote, arbitrary, php, code execution; advisories | CVE-2011-4825, OSVDB-76928; SHA-256 | 5f8de96e6ea32234373a0a7a5100ed196a91a7eb2302465bc03aeaa9b7bfff70; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 219 files
indoushka 133 files
Jay Turla 131 files
Ubuntu 59 files
h00die 35 files
Gentoo 33 files
sinn3r 29 files
Debian 27 files
juan vazquez 27 files
H D Moore 23 files

File Tags

File Archives

Systems

AIX (429)
Apple (2,104)
BSD (378)
CentOS (58)
Cisco (1,948)
Debian (7,112)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (880)
iOS (386)
iPhone (108)
IRIX (220)
Juniper (70)
Linux (50,967)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,661)
Slackware (941)
Solaris (1,614)
SUSE (1,444)
Ubuntu (9,789)
UNIX (9,443)
UnixWare (187)
Windows (6,739)
Other

packet storm

© 2024 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec