Local File Inclusion Archives

SSD Advisory – Cisco Prime Infrastructure File Inclusion and Remote Command Execution to Privileges Escalation

SSD / Ori Nimron | October 4, 2018 | Local File Inclusion, Privilege Escalation, Remote Command Execution, SecuriTeam Secure Disclosure, Unauthenticated Action

Vulnerabilities Summary Cisco Prime Infrastructure (CPI) contains two vulnerabilities that when exploited allow an unauthenticated attacker to achieve root privileges and execute code remotely. The first vulnerability is a file upload vulnerability ...

SecuriTeam Blogs

SSD Advisory – phpMyAdmin File Inclusion and Remote Code Execution

SSD / Ori Nimron | July 2, 2018 | Local File Inclusion, Remote Code Execution, SecuriTeam Secure Disclosure

Vulnerabilities Summary Authenticated users can exploit a file inclusion vulnerability in phpMyAdmin which can then be combined with another vulnerability, to perform Remote Code Execution. In addition, authnticated attackers can view files ...

SecuriTeam Blogs