Exploit

EDB-ID: 28896	Author: securfrog	Published: 2006-11-02
CVE: N/A	Type: Webapps	Platform: PHP
Aliases: N/A	Advisory/Source: Link	Tags: Vulnerability
E-DB Verified:	Exploit: Download / View Raw	Vulnerable App: N/A

« Previous Exploit Next Exploit »

source: http://www.securityfocus.com/bid/20874/info

RunCMS is prone to an arbitrary file-upload vulnerability. 

An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver process.

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/28896.php.zip

Related Exploits

Other Possible E-DB Search Terms: RunCMS 1.x, RunCMS

Date	Title	Author
2009-10-26	RunCMS - 'forum' Parameter SQL Injection	Nine:Situat...
2005-03-18	RunCMS 1.1 - Database Configuration Information Disclosure	Majid NT
2005-08-22	RunCMS 1.1/1.2 Module Newbb_plus/Messages - SQL Injection	James Bercegay
2006-02-09	RunCMS 1.2 - 'class.forumposts.php' Remote File Inclusion	rgod
2006-02-14	RunCMS 1.2/1.3 - 'PMLite.php' SQL Injection	Hamid Ebadi
2007-05-04	RunCMS 1.5.2 - 'debug_show.php' SQL Injection	rgod
2007-11-25	RunCMS 1.6 - 'disclaimer.php' Remote File Overwrite	BugReport.IR
2007-12-26	RunCMS 1.6 - Blind SQL Injection (IDS evasion)	sh2kerr
2007-12-25	RunCMS 1.6 - Get Admin Cookie Blind SQL Injection	sh2kerr
2007-11-24	RunCMS 1.6 - Local File Inclusion	BugReport.IR
2007-12-25	RunCMS 1.6 - Multiple Vulnerabilities	DSecRG
2008-02-18	RunCMS 1.6.1 - 'admin.php' Cross-Site Scripting	NBBN
2008-07-21	RunCMS 1.6.1 - 'bbPath[path]' Parameter Remote File Inclusion	Ciph3r
2008-07-21	RunCMS 1.6.1 - 'bbPath[root_theme]' Parameter Remote File Inclusion	Ciph3r
2008-05-08	RunCMS 1.6.1 - 'msg_image' Parameter SQL Injection	The:Paradox
2008-05-06	RunCMS 1.6.1 - 'pm.class.php' Multiple SQL Injections	The:Paradox
2009-07-13	RunCMS 1.6.3 - Remote Shell Injection	StAkeR
2006-03-06	RunCMS 1.x - 'Bigshow.php' Cross-Site Scripting	Roozbeh Afr...
2006-02-22	RunCMS 1.x - 'Ratefile.php' Cross-Site Scripting	Roozbeh Afr...
2010-07-07	RunCMS 2.1 - 'check.php' Cross-Site Scripting	Andrei Rims...
2010-07-11	RunCMS 2.1 - 'magpie_debug.php' Cross-Site Scripting	John Leitch
2011-02-10	RunCMS 2.2.2 - 'register.php' SQL Injection	High-Tech B...
2011-02-14	RunCMS 2.2.2 - Multiple Vulnerabilities	High-Tech B...
2009-10-26	RunCMS 2m1 - 'store()' SQL Injection	bookoo
2009-10-26	RunCMS 2ma - 'post.php' SQL Injection	bookoo

RunCMS 1.x - Avatar Arbitrary File Upload

Related Exploits