Jump to content

Hire Hacker

Hire Hacker

Hire Hacker

Hire Hacker

Existing user? Sign In
Sign In

Email Address

Password

Remember me
Not recommended on shared computers

Forgot your password?
Sign Up

mkCMS - 'index.php' Arbitrary PHP Code Execution

https://hacker.bz/t/entry/12307-mkcms-039indexphp039-arbitrary-php-code-execution/

source: https://www.securityfocus.com/bid/60488/info

mkCMS is prone to an arbitrary PHP code-execution vulnerability.

An attacker can exploit this issue to execute arbitrary PHP code within the context of the affected application.

mkCMS 3.6 is vulnerable; other versions may also be affected. 

http://www.example.com/mkCMS/index.php?cmd=dir

https://hacker.bz/t/entry/12307-mkcms-039indexphp039-arbitrary-php-code-execution/