- Comment
- Reblog
-
Subscribe
Subscribed
Already have a WordPress.com account? Log in now.
- Privacy
Upon analyzing the code in the "php-54-exploit" repository, we notice that it uses a simple and straightforward approach to exploit the vulnerability. The code crafts a malicious Authorization header and sends it to the server using the curl library.
The SOAP parser in PHP failed to properly disable external entity loading when parsing a WSDL file . An attacker could craft a malicious WSDL file that includes a reference to an external entity. Impact:
Here is an excerpt of the code:
, which contains text-based exploit reports and scripts for older PHP versions like 5.4.x.
Here are some relevant sources:
Kosher Movies