Exploit mkCMS - 'index.php' Arbitrary PHP Code Execution

[Exploiter]

EDB-ID

38571

Проверка EDB

1. Пройдено

Автор

CWH UNDERGROUND

Тип уязвимости

WEBAPPS

Платформа

PHP

CVE

N/A

Дата публикации

2013-06-11

mkCMS - 'index.php' Arbitrary PHP Code Execution

source: https://www.securityfocus.com/bid/60488/info

mkCMS is prone to an arbitrary PHP code-execution vulnerability.

An attacker can exploit this issue to execute arbitrary PHP code within the context of the affected application.

mkCMS 3.6 is vulnerable; other versions may also be affected. 

http://www.example.com/mkCMS/index.php?cmd=dir