IT-Securityguard Blog

PHP 5.3.3-5.3.6 Exploit + Bind Shell

| Keine Kommentare

Dear Readers, 5.3.3-5.3.6 is still used and its very easy to exploit.

All you need to do is find a way to upload a PHP file to the server, then call it.

The Payload is a bind tcp shell opening a port on the server between 4000 – 4500 to find the open one just use Nmap

nmap -sS -p 4000-4500 IP

 

 

 

you’re welcome

IT-Securityguard

Schreibe einen Kommentar

Pflichtfelder sind mit * markiert.