vendor:
N/A
by:
h0ng10, sinn3r
N/A
CVSS
N/A
Remote Code Injection
N/A
CWE
Product Name: N/A
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: PHP, Linux
2012
Network Shutdown Module <= 3.21 (sort_values) Remote PHP Code Injection
This module exploits a vulnerability in lib/dbtools.inc which uses unsanitized user input inside a eval() call. Additionally the base64 encoded user credentials are extracted from the database of the application. Please note that in order to be able to steal credentials, the vulnerable service must have at least one USV module (an entry in the 'nodes' table in mgedb.db)
Mitigation:
N/A
