InfoSec LAB

CVE-2011-4825

A vulnerability was found in Phpletter Ajax File and Image Manager up to 0.8 and classified as critical. This issue affects some unknown processing. The manipulation leads to code injection. The identification of this vulnerability is CVE-2011-4825. Furthermore, there is an exploit available. It is recommended to upgrade the affected component.

Exploit

┌──(kali㉿kali)-[~/PEN-200/PG_PRACTICE/zenphoto]
└─$ searchsploit -m php/webapps/18083.php ; mv 18083.php CVE-2011-4825.php
  Exploit: ZenPhoto 1.4.1.4 - 'ajax_create_folder.php' Remote Code Execution
      URL: https://www.exploit-db.com/exploits/18083
     Path: /usr/share/exploitdb/exploits/php/webapps/18083.php
    Codes: OSVDB-76928, CVE-2011-4825
 Verified: True
File Type: PHP script, ASCII text
Copied to: /home/kali/PEN-200/PG_PRACTICE/zenphoto/18083.php

Exploit available locally

InfoSec LAB

Explorer

ZenPhoto_CVE-2011-4825

CVE-2011-4825

Exploit

Interactive Graph View

Table of Contents

Backlinks