| Titre | Joomla! 3.4.6 - Remote Code Execution |
|---|
| Description | Exploit from Alessandro Groppo, part of Metasploit Framwork
PHP Object Injection because of a downsize in the read/write process with the database leads to RCE. The exploit will backdoor the configuration.php file in the root directory with en eval of a POST parameter. |
|---|
| La source | ⚠️ https://www.exploit-db.com/exploits/47539 |
|---|
| Utilisateur | misc (UID 3) |
|---|
| Soumission | 26/10/2019 14:37 (il y a 7 ans) |
|---|
| Modérer | 26/10/2019 16:02 (1 hour later) |
|---|
| Statut | Accepté |
|---|
| Entrée VulDB | 144232 [Joomla CMS 3.4.6 élévation de privilèges] |
|---|
| Points | 17 |
|---|