CVE-2000-0248

This exploit leverages a default credential vulnerability in Piranha virtual server and load balancing package (version 0.4.12) to authenticate and execute arbitrary commands via a flaw in the passwd.php3 script. The PoC demonstrates command injection by creating a file in /tmp.

This Metasploit module exploits a command injection vulnerability in RedHat Piranha's passwd.php3 script, allowing authenticated attackers to execute arbitrary commands as the Apache user. It leverages default credentials (piranha:q) and bypasses magic_quotes_gpc restrictions.

This Metasploit module exploits a command injection vulnerability in RedHat Piranha's passwd.php3 script, allowing authenticated attackers to execute arbitrary commands as the Apache user. It leverages default credentials (piranha:q) and URI-encoded payloads to bypass input sanitization.