[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Elastix Voip system 2.x , Php code injection / Data dump Exploit

[ 0Day-ID-21582 ]
Date add
Category
Platform
Verified
Price
 
0.021 BTC

 
2 000 USD
Risk
[
Security Risk Critical
]
Rel. releases
Description
Elastix is famous asterisk voip system interface dist.
it's vulnerable to php code injection vuln , which can be used to dump all data including
- SIP Extention Data
- Plain text admin password
- Moderators passwords
- All trunks data
- shell upload
Usage info
just add the ip list to "list.txt"
like this:
https://192.168.56.108/
https://192.168.56.90/
. . . etc

launch attack via "php attack.php"
setback and relax :D
Vendor
elastix.org
Affected ver
Any 2.x version
Tested on
Elastix dest , based on centos
Tags
Prooves Information
Proof imgs
Other Information
Abuses
0
Comments
10
Views
19 567
We DO NOT use Telegram or any messengers / social networks! We DO NOT use Telegram or any messengers / social networks! Please, beware of scammers!
Please login or register to buy exploit.
OR
Buy incognito
2
0
Verified by 0day Admin
Verified by 0day Admin
This material is checked by Administration and absolutely workable.
Learn more about    GOLD:
0day.today Gold is the currency of 0day.today project and is denoted on this site as such image: . It used for paying for the services, buying exploits, earning money, etc
We accept:
BitCoin (BTC)
You can pay us via BTC
LiteCoin (LTC)
You can pay us via LTC
Ethereum (ETH)
You can pay us via ETH

Author
BL
29
Exploits
11
Readers
7
[ Comments: 10 ]
Terms of use of comments:
  • Users are forbidden to exchange personal contact details
  • Haggle on other sites\projects is forbidden
  • Reselling is forbidden
Punishment: permanent block of user account with all Gold.

Login or register to leave comments