PhpTax 0.8 Code Execution

4 giugno 2013 - Fonte: http://www.mondounix.com 
#  ,--^----------,--------,-----,-------^--,
#  | |||||||||   `--------'     |          O .. CWH Underground Hacking Team ..
#  `+---------------------------^----------|
#    `\_,-------, _________________________|
#      / XXXXXX /`|     /
#     / XXXXXX /  `\   /
#    / XXXXXX /\______(
#   / XXXXXX /          
#  / XXXXXX /
# (________(            
#  `------'
 
# Exploit Title   : PhpTax File Manipulation(newvalue,field) Remote Code Execution
# Date            : 31 May 2013
# Exploit Author  : CWH Underground
# Site            : www.2600.in.th
# Vendor Homepage : http://phptax.sourceforge.net/
# Software Link   : http://sourceforge.net/projects/phptax/
# Version         : 0.8
# Tested on       : Window and Linux
 
 
#####################################################
#VULNERABILITY:...

Leggi il seguito »

Nessun commento »

Inserito in , , , , , , , , , , , , , ,

phpMyAdmin Authenticated Remote Code Execution

30 aprile 2013 - Fonte: http://www.mondounix.com 
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
#   http://metasploit.com/
##
 
require 'msf/core'
 
class Metasploit3 < Msf::Exploit::Remote
  Rank = ExcellentRanking
 
  include Msf::Exploit::Remote::HttpClient
 
  def initialize(info = {})
    super(update_info(info,
      'Name' => 'phpMyAdmin Authenticated Remote Code Execution via preg_replace()',
      'Description' => %q{
          This module exploits a PREG_REPLACE_EVAL vulnerability in phpMyAdmin's
          replace_prefix_tbl within libraries/mult_submits.inc.php via db_settings.php
...

Leggi il seguito »

Nessun commento »

Inserito in , , , , , , , , , , , , , , ,

phpMyAdmin 3.5.8 / 4.0.0-RC2 Code Execution / LFI / Overwrite

28 aprile 2013 - Fonte: http://www.mondounix.com 
[waraxe-2013-SA#103] - Multiple Vulnerabilities in phpMyAdmin
===============================================================================
 
Author: Janek Vind "waraxe"
Date: 25. April 2013
Location: Estonia, Tartu
Web: http://www.waraxe.us/advisory-103.html
 
 
Description of vulnerable software:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
phpMyAdmin is a free software tool written in PHP, intended to handle the
administration of MySQL over the World Wide Web. phpMyAdmin supports a wide
range of operations with MySQL.
 
http://www.phpmyadmin.net/home_page/index.php
 
 
###############################################################################
1....

Leggi il seguito »

Nessun commento »

Inserito in , , , , , , , , , , , , , , , , ,

PHP-Charts 1.0 PHP Code Execution

21 gennaio 2013 - Fonte: http://www.mondounix.com 
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
#   http://metasploit.com/framework/
##
 
require 'msf/core'
 
class Metasploit3 < Msf::Exploit::Remote
  Rank = ExcellentRanking
 
  include Msf::Exploit::Remote::HttpClient
 
  def initialize(info={})
    super(update_info(info,
      'Name'           => "PHP-Charts v1.0 PHP Code Execution Vulnerability",
      'Description'    => %q{
        This module exploits a PHP code execution vulnerability in php-Charts
        version 1.0 which could be abused to allow users to execute...

Leggi il seguito »

Nessun commento »

Inserito in , , , , , , , , , , , , , , ,

php-Charts Arbitrary PHP Code Execution Vulnerability

18 gennaio 2013 - Fonte: http://www.mondounix.com 
===============================================================
Vulnerable Software: php-chart_v1.0
Official Site: http://php-charts.com/
Vuln: PHP Code Execution.
===============================================================
Tested On: Debian squeeze 6.0.6
Server version: Apache/2.2.16 (Debian)
PHP 5.3.3-7+squeeze14 with Suhosin-Patch (cli) (built: Aug  6 2012 20:08:59)
Copyright (c) 1997-2009 The PHP Group
Zend Engine v2.3.0, Copyright (c) 1998-2010 Zend Technologies
with Suhosin v0.9.32.1, Copyright (c) 2007-2010, by SektionEins GmbH
 
================================================================
About Software:
Php-Charts is basically a class which can be used to generate
different charts(Bar, Pie, Doughnut etc.)...

Leggi il seguito »

Nessun commento »

Inserito in , , , , , , , , , , , ,

Invision Power Board 3.3.4 Code Execution

3 novembre 2012 - Fonte: http://www.mondounix.com 
<?php
 
/*
    ----------------------------------------------------------------
    Invision Power Board <= 3.3.4 "unserialize()" PHP Code Execution
    ----------------------------------------------------------------
 
    author..............: Egidio Romano aka EgiX
    mail................: n0b0d13s[at]gmail[dot]com
    software link.......: http://www.invisionpower.com/
 
    +-------------------------------------------------------------------------+
    | This proof of concept code was written for educational purpose only.    |
    | Use it at your own risk. Author will be not responsible for any damage....

Leggi il seguito »

Nessun commento »

Inserito in , , , , , , , , , , , , ,

InduSoft Web Studio Arbitrary Upload Remote Code Execution

4 ottobre 2012 - Fonte: http://www.mondounix.com 
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
#   http://metasploit.com/
##
 
require 'msf/core'
 
class Metasploit3 < Msf::Exploit::Remote
...

Leggi il seguito »

Nessun commento »

Inserito in , , , , , , , , , , , , , ,

PHPTax 0.8 Remote Code Execution

4 ottobre 2012 - Fonte: http://www.mondounix.com 
#!/usr/bin/env python
# PHPtax 0.8 <= Remote Code Execution Exploit
# Author: infodox // Discovered by Jean Pascal Pereira
# Site: insecurety.net
# Twitter: @info_dox
# Reference/Advisory: http://www.exploit-db.com/exploits/21665/
import sys
import requests
...

Leggi il seguito »

Nessun commento »

Inserito in , , , , , , , , , , ,

Webmin /file/show.cgi Remote Command Execution

21 settembre 2012 - Fonte: http://www.mondounix.com 
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
#   http://metasploit.com/
##
 
require 'msf/core'
 
class Metasploit3 < Msf::Exploit::Remote
...

Leggi il seguito »

Nessun commento »

Inserito in , , , , , , , , , , , ,

Java 7 Applet Remote Code Execution

28 agosto 2012 - Fonte: http://www.mondounix.com 
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
#   http://metasploit.com/
##
 
require 'msf/core'
require 'rex'
 
class Metasploit3 Leggi il seguito »

Nessun commento »

Inserito in , , , , , , , , , , , ,