Nmap Development mailing list archives
[NSE] A script to detect Remote Code Execution Vulnerability in phpMoAdmin installations
From: Gyanendra Mishra <anomaly.the () gmail com>
Date: Fri, 3 Apr 2015 02:21:14 +0530
Hi, This script is based on CVE 2015-2208 and checks for remote code execution vulnerability in phpMoAdmin 1.1.2. It is based on the exploits mentioned in [1] and [2]. I have also attached the GitHub link to the script[3], which you can check for future updates. I have tested the script on phpMoAdmin running on Ubuntu 14.04. [1] http://www.exploit-db.com/exploits/36251/ [2] http://1337day.com/exploit/description/23366 [3] https://github.com/h4ck3rk3y/nmap/blob/master/test_scripts/http-phpmoadmin-rce.nse Gyani
Attachment:
http-phpmoadmin-rce.nse
Description:
_______________________________________________ Sent through the dev mailing list https://nmap.org/mailman/listinfo/dev Archived at http://seclists.org/nmap-dev/
Current thread:
- [NSE] A script to detect Remote Code Execution Vulnerability in phpMoAdmin installations Gyanendra Mishra (Apr 02)