Описание
The saveObject function in moadmin.php in phpMoAdmin 1.1.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the object parameter.
The saveObject function in moadmin.php in phpMoAdmin 1.1.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the object parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2015-2208
- http://packetstormsecurity.com/files/130685/PHPMoAdmin-1.1.2-Remote-Code-Execution.html
- http://seclists.org/fulldisclosure/2015/Mar/19
- http://www.exploit-db.com/exploits/36251
- http://www.openwall.com/lists/oss-security/2015/03/04/4
- http://www.openwall.com/lists/oss-security/2015/03/04/5
Связанные уязвимости
nvd
почти 11 лет назад
The saveObject function in moadmin.php in phpMoAdmin 1.1.2 allows remote attackers to execute arbitrary commands via shell metacharacters in the object parameter.