exploit the possibilities

Register | Login

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 1 of 1

OSVDB: OSVDB-77391

WikkaWiki 1.3.2 Spam Logging PHP Injection: Posted May 11, 2012; Authored by EgiX, sinn3r | Site metasploit.com; This Metasploit module exploits a vulnerability found in WikkaWiki. When the spam logging feature is enabled, it is possible to inject PHP code into the spam log file via the UserAgent header, and then request it to execute our payload. There are at least three different ways to trigger spam protection, this module does so by generating 10 fake URLs in a comment (by default, the max_new_comment_urls parameter is 6). Please note that in order to use the injection, you must manually pick a page first that allows you to add a comment, and then set it as 'PAGE'.; tags | exploit, php; advisories | CVE-2011-4449, OSVDB-77391; SHA-256 | 979dd7941c1071466332c8564dba032aa510362e1fb22f874339cf269936c50e; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 219 files
indoushka 133 files
Jay Turla 131 files
Ubuntu 59 files
h00die 35 files
Gentoo 33 files
sinn3r 29 files
Debian 27 files
juan vazquez 27 files
H D Moore 23 files

File Tags

File Archives

Systems

AIX (429)
Apple (2,104)
BSD (378)
CentOS (58)
Cisco (1,948)
Debian (7,112)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,567)
HPUX (880)
iOS (386)
iPhone (108)
IRIX (220)
Juniper (70)
Linux (50,967)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,661)
Slackware (941)
Solaris (1,614)
SUSE (1,444)
Ubuntu (9,789)
UNIX (9,443)
UnixWare (187)
Windows (6,739)
Other

packet storm

© 2024 Packet Storm. All rights reserved.

Site Links: News by Month; News Tags; Files by Month; File Tags; File Directory

About Us: History & Purpose; Contact Information; Terms of Service; Privacy Statement; Copyright Information

Services: Security Services
Hosting By: Rokasec